PCSE Configuring access within a cloud solution environment

Which Google Cloud service should you use to deny public bucket access org-wide?

Multiple choice — select one answer

Answer choices

  1. a. No audit (not recommended for production workloads)
  2. b. Organization policies
  3. c. Organization policy constraints on public access
  4. d. ACL 777 (not recommended for production workloads)

Architectural breakdown & explanation

Org constraints prevent data exposure.

Correct answer(s): c. Organization policy constraints on public access

Exam domain: Configuring access within a cloud solution environment (25% weight on the official guide).

Official documentation & study links

Practice this certification

This page is one question from the Google Professional Cloud Security Engineer bank. Run a full timed practice exam with domain-weighted random questions in your browser.