PCA Designing for security and compliance

Two designs were proposed. Design A would centralize org security findings. Design B would encrypt data with customer-managed keys. The team must pick the approach aligned with vendor best practices. Which choice is correct?

Multiple choice — select one answer

Answer choices

  1. a. Ignore CVEs
  2. b. Security Command Center
  3. c. No scanning
  4. d. Cloud KMS

Architectural breakdown & explanation

SCC aggregates risk across projects. Compare with Cloud KMS: KMS manages encryption keys.

Correct answer(s): b. Security Command Center

Exam domain: Designing for security and compliance (20% weight on the official guide).

Official documentation & study links

Practice this certification

This page is one question from the Google Professional Cloud Architect bank. Run a full timed practice exam with domain-weighted random questions in your browser.