Google Cloud Professional Cloud Security Engineer — Question 187

Your organization has Google Cloud applications that require access to external web services. You must monitor, control, and log access to these services. What should you do?

Answer options

• A. Set up a Secure Web Proxy that allows access to the specific external web services. Configure applications to use the proxy for the web service requests.
• B. Set up a Cloud NAT instance to allow egress traffic from your VPC.
• C. Configure VPC firewall rules to allow the services to access the IP addresses of required external web services.
• D. Configure Google Cloud Armor to monitor and protect your applications by checking incoming traffic patterns for attack patterns.

Correct answer: A

Explanation

The correct option is A because establishing a Secure Web Proxy allows you to monitor, control, and log access specifically to the designated external web services. Option B does not provide the required monitoring and control over egress traffic, while option C focuses on allowing access but lacks logging capabilities, and option D is oriented towards incoming traffic security rather than managing access to external services.