🔥 3-day streak
Professional Cloud Security Engineer61 / 152
Question 61 of 152
A media company allows external partners to upload files to a Cloud Storage bucket. Compliance requires that any object containing sensitive data (credit card numbers, national IDs) never remain in the publicly writable ingestion bucket. Security wants an automated pipeline that inspects each newly uploaded object and moves clean files to a processing bucket while relocating files with sensitive findings to a restricted quarantine bucket for review. Which architecture best meets these requirements using Google-managed services?
Reviewed for accuracy · Report an issueNext question