Domain 3: Ensuring security and compliance

Google Cloud Professional Cloud Architect · this domain is approximately 16.7% of the exam · 0 practice questions.

This domain tests a candidate's ability to design and implement security controls that protect data, workloads, and identities on Google Cloud while satisfying regulatory and compliance requirements. Key topics include configuring Identity and Access Management with least-privilege principles, using VPC Service Controls to create security perimeters, managing encryption with Cloud KMS and customer-managed keys, and applying organizational policies. Candidates must also understand compliance frameworks relevant to Google Cloud, such as PCI DSS, HIPAA, and FedRAMP, and know how Google's shared responsibility model allocates security obligations between the platform and the customer. Security and compliance questions appear throughout the exam, often as constraints layered on top of architecture or infrastructure scenarios.

Practice all 0 questions in this domain

The full Google Cloud Professional Cloud Architect bank includes 0 more questions in this domain, each with a verified answer and a written explanation.