Google Exam Professional Cloud Security Engineer Topic 4 Question 96 Discussion

Actual exam question for Google's Professional Cloud Security Engineer exam

Question #: 96
Topic #: 4

[All Professional Cloud Security Engineer Questions]

When working with agents in a support center via online chat, an organization's customers often share pictures of their documents with personally identifiable information (PII). The organization that owns the support center is concerned that the PII is being stored in their databases as part of the regular chat logs they retain for

review by internal or external analysts for customer service trend analysis.

Which Google Cloud solution should the organization use to help resolve this concern for the customer while still maintaining data utility?

AUse Cloud Key Management Service (KMS) to encrypt the PII data shared by customers before storing it for analysis.

BUse Object Lifecycle Management to make sure that all chat records with PII in them are discarded and not saved for analysis.

CUse the image inspection and redaction actions of the DLP API to redact PII from the images before storing them for analysis.

DUse the generalization and bucketing actions of the DLP API solution to redact PII from the texts before storing them for analysis.

Show Suggested Answer

Suggested Answer: A, C

https://cloud.google.com/architecture/framework/security/data-residency-sovereignty#manage_your_operational_sovereignty

by Elenora at Jan 14, 2025, 04:14 PM

Limited Time Offer

25%

16 days ago

I think option C is the way to go. Using the DLP API to redact the PII from the images before storing them is the most effective solution to protect customer data while still maintaining the utility of the chat logs for analysis.

upvoted 0 times

Ilda

3 days ago

I agree, option C seems like the best choice to protect customer data.

upvoted 0 times

...