You have an application running on Compute Engine that uses BigQuery to generate some results that are stored in Cloud Storage. You want to ensure that none of the application instances have external IP addresses.Which two methods can you use to accomplish this? (Choose two.)
You are designing a shared VPC architecture. Your network and security team has strict controls over which routes are exposed between departments. YourProduction and Staging departments can communicate with each other, but only via specific networks. You want to follow Google-recommended practices.How should you design this topology?
You are adding steps to a working automation that uses a service account to authenticate. You need to drive the automation the ability to retrieve files from aCloud Storage bucket. Your organization requires using the least privilege possible.What should you do?
You converted an auto mode VPC network to custom mode. Since the conversion, some of your Cloud Deployment Manager templates are no longer working.You want to resolve the problem.What should you do?
You have recently been put in charge of managing identity and access management for your organization. You have several projects and want to use scripting and automation wherever possible. You want to grant the editor role to a project member.Which two methods can you use to accomplish this? (Choose two.)
You need to restrict access to your Google Cloud load-balanced application so that only specific IP addresses can connect.What should you do?
