ExpertMinds LogoExpertMinds
Medium1 markMultiple Choice
Domain 3: Designing for Security and ComplianceSecurityComplianceVPC Service Controls
This question is part of a case study — click to read the full scenario(Case 06)

CASE STUDY: ShopGlobal. Global e-commerce. Monolithic Java on VMware. Oracle RAC (20TB). 10x Black Friday traffic. Req: Microservices, 100% uptime during holidays, personalized recommendations. CEO: Flawless omnichannel. CFO: Predictable spend. CTO: No vendor lock-in, open-source. Tech: Containerize, Global LB, PCI-DSS, async orders, real-time inventory. Constraints: Keep Oracle on-prem for 2 yrs (licensing), low K8s skills, strict security reviews.

How should you design the hybrid connectivity between GCP microservices and the on-premises Oracle database to ensure high throughput and low latency?

View full case study page →

GCP PCA · Question 08 · Domain 3: Designing for Security and Compliance

CASE STUDY: ShopGlobal. Global e-commerce. Monolithic Java on VMware. Oracle RAC (20TB). 10x Black Friday traffic. Req: Microservices, 100% uptime during holidays, personalized recommendations. CEO: Flawless omnichannel. CFO: Predictable spend. CTO: No vendor lock-in, open-source. Tech: Containerize, Global LB, PCI-DSS, async orders, real-time inventory. Constraints: Keep Oracle on-prem for 2 yrs (licensing), low K8s skills, strict security reviews.

To meet PCI-DSS compliance and prevent data exfiltration from the payment processing microservices, what should you configure?

Answer options:

A.

Cloud Armor WAF rules.

B.

VPC Service Controls

C.

Identity-Aware Proxy (IAP).

D.

Cloud Data Loss Prevention (DLP).

How to approach this question

Identify the GCP service designed specifically for data exfiltration prevention.

Full Answer

B.VPC Service Controls✓ Correct
VPC Service Controls
VPC Service Controls define security perimeters around GCP resources to mitigate data exfiltration risks, crucial for PCI-DSS.

Common mistakes

Confusing inbound protection (Cloud Armor) with outbound protection (VPC SC).
07All questions09

Practice the full GCP Professional Cloud Architect Practice Exam 2

50 questions · hints · full answers · grading

Sign up freeTake the exam

More questions from this exam

Q01CASE STUDY: TechStream Gaming. 500 emp, $100M rev. On-prem US/EU, 200 servers, MySQL 5TB. 2M peak...MediumQ02CASE STUDY: TechStream Gaming. 500 emp, $100M rev. On-prem US/EU, 200 servers, MySQL 5TB. 2M peak...MediumQ03CASE STUDY: TechStream Gaming. 500 emp, $100M rev. On-prem US/EU, 200 servers, MySQL 5TB. 2M peak...HardQ04CASE STUDY: TechStream Gaming. 500 emp, $100M rev. On-prem US/EU, 200 servers, MySQL 5TB. 2M peak...MediumQ05CASE STUDY: TechStream Gaming. 500 emp, $100M rev. On-prem US/EU, 200 servers, MySQL 5TB. 2M peak...Easy
View all 50 questions →