Your organization is preparing for a SOC 2 audit. The auditors require proof that you are continuously monitoring your GCP environment for misconfigurations (e.g., public Cloud Storage buckets, open firewall rules) and that you have a centralized dashboard for security alerts. Which TWO GCP services should you utilize? (Select TWO)

Answer options:

Cloud Monitoring

Cloud Audit Logs

Security Command Center (SCC)

VPC Service Controls

Security Health Analytics

How to approach this question

Identify the GCP centralized security dashboard and its built-in scanner for misconfigurations.

Full Answer

C,E

Security Command Center (SCC) is Google Cloud's native security and risk management platform, providing a centralized dashboard for all security alerts. Within SCC, Security Health Analytics automatically runs continuous scans against your GCP infrastructure to detect misconfigurations (like publicly accessible buckets, open firewall ports, or missing MFA) and maps them to compliance standards like SOC 2.

Common mistakes

Choosing Cloud Monitoring (Option A). Monitoring is for operational health (SRE), while SCC is for security posture.

Question 40 All questions Question 42

Practice the full GCP Professional Cloud Architect Practice Exam 7

50 questions · hints · full answers · grading

More questions from this exam

Q01CASE STUDY: TechStream Gaming Company Overview: TechStream Gaming is a global multiplayer game d...Hard Q02CASE STUDY: TechStream Gaming Company Overview: TechStream Gaming is a global multiplayer game d...Medium Q03CASE STUDY: TechStream Gaming Company Overview: TechStream Gaming is a global multiplayer game d...Medium Q04CASE STUDY: TechStream Gaming Company Overview: TechStream Gaming is a global multiplayer game d...Medium Q05CASE STUDY: TechStream Gaming Company Overview: TechStream Gaming is a global multiplayer game d...Medium

View all 50 questions →