Google Cloud Professional Cloud Security Engineer — Question 291

Your company requires the security and network engineering teams to identify all network anomalies and be able to capture payloads within VPCs. Which method should you use?

Answer options

• A. Define an organization policy constraint.
• B. Configure packet mirroring policies.
• C. Enable VPC Flow Logs on the subnet.
• D. Monitor and analyze Cloud Audit Logs.

Correct answer: B

Explanation

The correct answer is B because configuring packet mirroring policies allows you to capture and analyze network traffic, which is essential for identifying anomalies and payloads. The other options either do not provide the capability to capture payloads directly or focus on logging and monitoring rather than active traffic analysis.