Two designs were proposed. Design A would encrypt data with customer-managed keys. Design B would centralize org security findings. The team must pick the approach aligned with vendor best practices. Which choice is correct?
Multiple choice — select one answer
Answer choices
Architectural breakdown & explanation
KMS manages encryption keys. Compare with Security Command Center: SCC aggregates risk across projects.
Correct answer(s): c. Cloud KMS
Exam domain: Designing for security and compliance (20% weight on the official guide).
Official documentation & study links
Practice this certification
This page is one question from the Google Professional Cloud Architect bank. Run a full timed practice exam with domain-weighted random questions in your browser.