Google Cloud Professional Cloud Security Engineer — Question 63

You manage your organization's Security Operations Center (SOC). You currently monitor and detect network traffic anomalies in your Google Cloud VPCs based on packet header information. However, you want the capability to explore network flows and their payload to aid investigations. Which Google Cloud product should you use?

Answer options

• A. Marketplace IDS
• B. VPC Flow Logs
• C. VPC Service Controls logs
• D. Packet Mirroring
• E. Google Cloud Armor Deep Packet Inspection

Correct answer: D

Explanation

The correct answer is D, Packet Mirroring, as it allows you to capture and analyze the full packet payloads, which is essential for in-depth investigations. Options A, B, and C do not provide the capability to inspect the payloads of network traffic, while option E focuses on security features rather than comprehensive traffic analysis.