Google Exam Professional Data Engineer Topic 1 Question 67 Discussion

Actual exam question for Google's Professional Data Engineer exam

Question #: 67
Topic #: 1

[All Professional Data Engineer Questions]

You are preparing an organization-wide dataset. You need to preprocess customer data stored in a restricted bucket in Cloud Storage. The data will be used to create consumer analyses. You need to follow data privacy requirements, including protecting certain sensitive data elements, while also retaining all of the data for potential future use cases. What should you do?

AUse Dataflow and the Cloud Data Loss Prevention API to mask sensitive data. Write the processed data in BigQuery.

BUse the Cloud Data Loss Prevention API and Dataflow to detect and remove sensitive fields from the data in Cloud Storage. Write the filtered data in BigQuery.

CUse Dataflow and Cloud KMS to encrypt sensitive fields and write the encrypted data in BigQuery. Share the encryption key by following the principle of least privilege.

DUse customer-managed encryption keys (CMEK) to directly encrypt the data in Cloud Storage. Use federated queries from BigQuery. Share the encryption key by following the principle of least privilege.

Show Suggested Answer

Suggested Answer: C

by Denise at Mar 22, 2023, 05:20 PM

Limited Time Offer

25%

23 days ago

I think option A is the best choice because it uses Dataflow and the Cloud Data Loss Prevention API to mask sensitive data.

upvoted 0 times

...