- Home
- Google Certified Professional - Cloud Architect (GCP)
- Google.Professional-Cloud-Architect.v2018-04-15.q70
- Question 3
Valid Professional-Cloud-Architect Dumps shared by ExamDiscuss.com for Helping Passing Professional-Cloud-Architect Exam! ExamDiscuss.com now offer the newest Professional-Cloud-Architect exam dumps, the ExamDiscuss.com Professional-Cloud-Architect exam questions have been updated and answers have been corrected get the newest ExamDiscuss.com Professional-Cloud-Architect dumps with Test Engine here:
Access Professional-Cloud-Architect Dumps Premium Version
(282 Q&As Dumps, 35%OFF Special Discount Code: freecram)
<< Prev Question Next Question >>
Question 3/70
Your application needs to process credit card transactions. You want the smallest scope of Payment Card Industry (PCI) compliance without compromising the ability to analyze transactional data and trends relating to which payment methods are used. How should you design your architecture?
Correct Answer: D
- Question List (70q)
- 2 commentQuestion 1: For this question, refer to the JencoMart case study. JencoM...
- 6 commentQuestion 2: You want to enable your running Google Container Engine clus...
- 10 commentQuestion 3: Your application needs to process credit card transactions. ...
- 4 commentQuestion 4: For this question refer to the TerramEarth case study Operat...
- 2 commentQuestion 5: For this question, refer to the TerramEarth case study Your ...
- 3 commentQuestion 6: You want to make a copy of a production Linux virtual machin...
- 10 commentQuestion 7: For this question, refer to the Dress4Win case study. As par...
- 6 commentQuestion 8: Your company just finished a rapid lift and shift to Google ...
- 7 commentQuestion 9: Your solution is producing performance bugs in production th...
- 6 commentQuestion 10: Your organization requires that metrics from all application...
- 4 commentQuestion 11: You are creating a solution to remove backup files older tha...
- 2 commentQuestion 12: Your organization has a 3-tier web application deployed in t...
- 7 commentQuestion 13: Your company's test suite is a custom C++ application that r...
- 1 commentQuestion 14: For this question, refer to the TerramEarth case study. Terr...
- 5 commentQuestion 15: A news teed web service has the following code running on Go...
- 10 commentQuestion 16: For this question, refer to the JencoMart case study. JencoM...
- 8 commentQuestion 17: For this question, refer to the Mountkirk Games case study. ...
- 4 commentQuestion 18: A lead engineer wrote a custom tool that deploys virtual mac...
- Question 19: You want to optimize the performance of an accurate, real-ti...
- 5 commentQuestion 20: For this question, refer to the TerramEarth case study. To s...
- 8 commentQuestion 21: You are designing a large distributed application with 30 mi...
- 3 commentQuestion 22: For this question, refer to the JencoMart case study. JencoM...
- Question 23: For this question, refer to the Dress4Win case study. You wa...
- 3 commentQuestion 24: One of your primary business objectives is being able to tru...
- 3 commentQuestion 25: Your company places a high value on being responsive and mee...
- 4 commentQuestion 26: For this question, refer to the Mountkirk Games case study. ...
- 2 commentQuestion 27: Your development team has installed a new Linux kernel modul...
- 2 commentQuestion 28: You have created several preemptible Linux virtual machine i...
- 2 commentQuestion 29: For this question, refer to the Dress4Win case study. Dress4...
- 4 commentQuestion 30: The application reliability team at your company has added a...
- 1 commentQuestion 31: For this question, refer to the Mountkirk Games case study. ...
- 5 commentQuestion 32: For this question, refer to the TerramEarth case study. Terr...
- 6 commentQuestion 33: For this question, refer to the TerramEarth case study. Terr...
- 5 commentQuestion 34: For this question, refer to the Dress4Win case study. Dress4...
- 2 commentQuestion 35: Your company's user-feedback portal comprises a standard LAM...
- Question 36: You need to reduce the number of unplanned rollbacks of erro...
- 1 commentQuestion 37: Your company wants to try out the cloud with low risk. They ...
- 3 commentQuestion 38: For this question, refer to the Dress4Win case study. The Dr...
- 1 commentQuestion 39: Your company plans to migrate a multi-petabyte data set to t...
- 8 commentQuestion 40: For this question, refer to the JencoMart case study A few d...
- 6 commentQuestion 41: A development manager is building a new application He asks ...
- 1 commentQuestion 42: You set up an autoscaling instance group to serve web traffi...
- 13 commentQuestion 43: For this question, refer to the TerramEarth case study. Terr...
- 4 commentQuestion 44: To reduce costs, the Director of Engineering has required al...
- 2 commentQuestion 45: During a high traffic portion of the day, one of your relati...
- 5 commentQuestion 46: Your company runs several databases on a single MySQL instan...
- Question 47: You deploy your custom Java application to Google App Engine...
- 4 commentQuestion 48: The database administration team has asked you to help them ...
- 3 commentQuestion 49: For this question, refer to the JencoMart case study. The Je...
- 6 commentQuestion 50: You write a Python script to connect to Google BigQuery from...
- 7 commentQuestion 51: For this question, refer to the Mountkirk Games case study M...
- Question 52: Your company has successfully migrated to the cloud and want...
- 2 commentQuestion 53: A lead software engineer tells you that his new application ...
- 1 commentQuestion 54: For this question, refer to the Dress4Win case study. As par...
- 2 commentQuestion 55: For this question, refer to the JencoMart case study. JencoM...
- 4 commentQuestion 56: Your customer is receiving reports that their recently updat...
- 10 commentQuestion 57: Your company has decided to build a backup replica of their ...
- Question 58: Your marketing department wants to send out a promotional em...
- Question 59: Your company is forecasting a sharp increase in the number a...
- 8 commentQuestion 60: You have been asked to select the storage system for the cli...
- Question 61: Your company wants to track whether someone is present in a ...
- 3 commentQuestion 62: A small number of API requests to your microservices-based a...
- Question 63: Your company's test suite is a custom C++ application that r...
- 7 commentQuestion 64: You are helping the QA team to roll out a new load-testing t...
- 7 commentQuestion 65: An application development team believes their current loggi...
- 4 commentQuestion 66: For this question, refer to the Mountkirk Games case study. ...
- 5 commentQuestion 67: For this question, refer to the Dress4Win case study. Dress4...
- 5 commentQuestion 68: For this question, refer to the JencoMart case study. The mi...
- 7 commentQuestion 69: One of the developers on your team deployed their applicatio...
- 7 commentQuestion 70: Your customer is moving an existing corporate application to...
[×]
Download PDF File
Enter your email address to download Google.Professional-Cloud-Architect.v2018-04-15.q70.pdf
Recent Comments (The most recent comments are at the top.)
https://cloud.google.com/solutions/pci-dss-compliance-in-gcp find "To simplify access restriction and compliance auditing, create a production-quality, payment-processing environment that is fully isolated from your standard production environment and any dev/QA environments (requirement 6.4.1). To ensure isolation, create and use a GCP account that is separate from your core production environment account. Users experienced with Cloud Identity and Access Management (Cloud IAM) configuration can accomplish equivalent isolation by using separate projects for in-scope work." Therefore C
Answer is C
I Agree with you Eikistein
That's a really trick question (in reality tricky possible answers). In my opinion C is the correct answer and I agree with Kris.
Here are my thoughts:
I think we can all agree neither A nor B are the correct answer.
About D:
When I read this https://cloud.google.com/solutions/time-series/bigquery-financial-forex (provided by Salim Masani below) I was sure the answer was D however the article does not specifically say how the PII (personally identifiable information) is encrypted in transit and at rest. Having said that, the text of the answer is not "use BigQuery", it is "Enable Logging export to Google BigQuery...", so what is this ? No special protection over PII data, but a way to allow auditor to catch any PII data leak. That's not exactlly a safe setup.
About E:
I work for a Financial institution and we implemented PII using Tokenization + separate projects. So we used C + E.
Why don't I think E is correct? For 2 reasons:
1) Tokenization could be seen with a solution that is "compromising the ability to analyze transactional data...". you can't exactly query tokenized data
2) The article in https://cloud.google.com/solutions/pci-dss (provided by Kris) is so complete that would be crazy to think that is not the right answer
Correct Answer if C
https://cloud.google.com/solutions/pci-dss
To simplify access restriction and compliance auditing, you must create a production-quality payment-processing environment that is fully isolated from your standard production environment. To ensure full isolation, create and use a Google Cloud Platform account that is separate from your core production environment account.
They want to reduce their PCI compliance scope, so that means not storing PII where not necessary. If they use tokens they can store the actual PII in a centralized secure store and still use tokens to analyze trends. So E is right.
besides BigQuery uses ACLs to manage permissions on projects and datasets . Kindly refer the below link
https://cloud.google.com/bigquery/docs/concepts
According to me Google BigQuery is PCI compliant and D is the right answere
https://cloud.google.com/solutions/time-series/bigquery-financial-forex
D not right, ACLs not for BigQuery. https://cloud.google.com/bigquery/docs/access-control
I agree with stonewealth: https://cloud.google.com/dlp/docs/deidentify-sensitive-data. It should be E
I think answer should be E?
See https://www.sans.org/reading-room/whitepapers/compliance/ways-reduce-pci-dss-audit-scope-tokenizing-cardholder-data-33194