ExpertHard1 markMultiple Choice
GCP PCA · Question 50 · Design for Security
You are configuring Security Command Center (SCC) Premium for a large financial institution. The CISO wants to be alerted immediately if a service account key is leaked to a public GitHub repository, and wants to detect if any Compute Engine instances are communicating with known malicious IP addresses (botnets). Which TWO SCC built-in services provide these capabilities? (Select TWO)
You are configuring Security Command Center (SCC) Premium for a large financial institution. The CISO wants to be alerted immediately if a service account key is leaked to a public GitHub repository, and wants to detect if any Compute Engine instances are communicating with known malicious IP addresses (botnets). Which TWO SCC built-in services provide these capabilities? (Select TWO)
Answer options:
A.
Event Threat Detection
B.
Security Health Analytics
C.
Web Risk API
D.
Cloud Data Loss Prevention (DLP)
E.
Virtual Machine Threat Detection
F.
Google Cloud's leaked credential detection (part of SCC)
How to approach this question
Identify the SCC components that handle active threat detection (logs/network) and external credential leaks.
Full Answer
A,C
Security Command Center Premium includes several specialized detection services. 'Event Threat Detection' analyzes VPC Flow Logs and Cloud Audit Logs in near real-time to detect active threats, such as VMs communicating with known botnet command-and-control servers. Google also runs a 'leaked credential detection' program that constantly scans public GitHub repositories; if it finds a GCP service account key belonging to your organization, it immediately creates a finding in SCC.
Common mistakes
Confusing Security Health Analytics (which finds static misconfigurations) with Event Threat Detection (which finds active, dynamic threats in logs).
Practice the full GCP Professional Cloud Architect Practice Exam 7
50 questions · hints · full answers · grading
More questions from this exam
Q01CASE STUDY: TechStream Gaming
Company Overview:
TechStream Gaming is a global multiplayer game d...HardQ02CASE STUDY: TechStream Gaming
Company Overview:
TechStream Gaming is a global multiplayer game d...MediumQ03CASE STUDY: TechStream Gaming
Company Overview:
TechStream Gaming is a global multiplayer game d...MediumQ04CASE STUDY: TechStream Gaming
Company Overview:
TechStream Gaming is a global multiplayer game d...MediumQ05CASE STUDY: TechStream Gaming
Company Overview:
TechStream Gaming is a global multiplayer game d...Medium