Question 1

Your organization requires strict auditing of all GCP resources. The security team needs to know exactly who modified a firewall rule, and they also need to know which users queried a specific BigQuery dataset containing PII. Which TWO types of Cloud Audit Logs must be enabled or analyzed to gather this information? (Select TWO)

Accepted Answer

Distinguish between logs that record configuration changes and logs that record data reads.

Question 2

What mistakes do candidates make on this GCP PCA question?

Accepted Answer

Selecting VPC Flow Logs (D) because firewalls are mentioned, but Flow Logs only show network traffic, not the API call that *changed* the firewall rule.

How to approach this question

Full Answer

Common mistakes

Practice the full GCP Professional Cloud Architect Practice Exam 6

More questions from this exam