Google Cloud Professional Cloud Security Engineer — Question 51

A customer deploys an application to App Engine and needs to check for Open Web Application Security Project (OWASP) vulnerabilities.
Which service should be used to accomplish this?

Answer options

• A. Cloud Armor
• B. Google Cloud Audit Logs
• C. Web Security Scanner
• D. Anomaly Detection

Correct answer: C

Explanation

The correct service for identifying OWASP vulnerabilities is the Web Security Scanner, as it is specifically designed to find security issues in web applications. Cloud Armor is focused on DDoS protection and security policies, Google Cloud Audit Logs is for tracking resource usage and access, and Anomaly Detection is aimed at identifying unusual patterns in data, making them unsuitable for this particular task.