Google Cloud Professional Cloud Security Engineer — Question 186

Your organization strives to be a market leader in software innovation. You provided a large number of Google Cloud environments so developers can test the integration of Gemini in Vertex AI into their existing applications or create new projects. Your organization has 200 developers and a five-person security team. You must prevent and detect proper security policies across the Google Cloud environments. What should you do? (Choose two.)

Answer options

• A. Apply organization policy constraints. Detect and monitor drifts by using Security Health Analytics.
• B. Publish internal policies and clear guidelines to securely develop applications.
• C. Use Cloud Logging to create log filters to detect misconfigurations. Trigger Cloud Run functions to remediate misconfigurations.
• D. Apply a predefined AI-recommended security posture template for Gemini in Vertex AI in Security Command Center Enterprise or Premium tiers.
• E. Implement the least privileged access Identity and Access Management roles to prevent misconfigurations.

Correct answer: A, D

Explanation

The correct answer includes A and D because applying organization policy constraints and utilizing Security Health Analytics effectively monitors compliance and detects security issues, while implementing a predefined AI-recommended security posture helps ensure best practices are followed. Options B, C, and E, while useful, do not provide the comprehensive monitoring and enforcement capabilities that A and D offer.