Question-29: Cloud Logging is a fully managed service that gives you the ability to store, search, analyse, monitor, and alert on logging data and events coming from Amazon Web Services and Google Cloud. You will have the ability to capture logging data from over 150 different common application components, on-premises systems, and hybrid cloud systems. All of your company's Google Cloud logs are sent to Cloud Logging. The logs are something that your security team wants to keep an eye on. You need to make certain that the security team is able to respond rapidly in the event that an abnormality such as an unauthorized modification to the firewall or a server breach is discovered. You should adhere to the best practises advocated by Google. What action should you take?
A. Make a reservation for a cron job using Cloud Scheduler. The job that is scheduled to run checks the logs every minute to see if there have been any relevant events.
B. Export the logs to BigQuery and then use that platform to execute a query that will process the log data and look for relevant events.
C. Send the logs to a Pub/Sub topic and then trigger a Cloud Function with the events that are pertinent to the logs.
D. Export the logs to a bucket in Cloud Storage and then trigger Cloud Run with the events that are pertinent to the logs.
Correct Answer
Get All 340 Questions and Answer for Google Professional Cloud Architect
: 3 Explanation: BigQuery can get expensive if you have somehow check the logs for anomalies Logging is an essential part of your cloud infrastructure because it gives you insightful data about how well your systems and applications are performing. Cloud Logging is a service on Google Cloud that gives you the ability to store log data and events from your Google Cloud Platform (GCP) infrastructure services and your applications, as well as search for them, monitor them, and receive alerts about them. Through the use of the Logs Viewer, the command line, or the Cloud SDK, you have the ability to view and analyse log data in real time. These logging tools are designed to make it easier for you to locate and make sense of your logs. You may have business or technical processes that require an automated action, or you may want to reduce the amount of work that your DevOps team has to do. Both of these scenarios are possible. You might, for instance, want to use the changes in your Cloud Audit Logs to take action and remediate a security vulnerability caused by inadvertent infrastructure changes. This can be done by referring to the logs. You will be able to construct an event-driven system with the help of a Logging sink that will detect and react to log events in real time. Through its integration with Cloud Pub/Sub and a serverless computing service such as Cloud Functions or Cloud Run, Cloud Logging is able to provide assistance to you in the construction of an event-driven architecture.