Google Cloud Professional Cloud Security Engineer — Question 353

You want to evaluate your organization's Google Cloud instance for PCI compliance. You need to identify Google's inherent controls.
Which document should you review to find the information?

Answer options

• A. Google Cloud Platform: Customer Responsibility Matrix
• B. PCI DSS Requirements and Security Assessment Procedures
• C. PCI SSC Cloud Computing Guidelines
• D. Product documentation for Compute Engine

Correct answer: A

Explanation

The Google Cloud Platform: Customer Responsibility Matrix outlines the shared responsibility model, detailing the controls that Google implements. The other documents focus on compliance requirements or guidelines, but do not specifically address the inherent controls provided by Google.