Topic: Professional Cloud Security Engineer topic 1 question 233

You manage a fleet of virtual machines (VMs) in your organization. You have encountered issues with lack of patching in many VMs. You need to automate regular patching in your VMs and view the patch management data across multiple projects.

What should you do? (Choose two.)

A.
View patch management data in VM Manager by using OS patch management.
B.
View patch management data in Artifact Registry.
C.
View patch management data in a Security Command Center dashboard.
D.
Deploy patches with Security Command Genter by using Rapid Vulnerability Detection.
E.
Deploy patches with VM Manager by using OS patch management.

Re: Professional Cloud Security Engineer topic 1 question 233

https://cloud.google.com/security-command-center/docs/concepts-security-sources#vm_manager
Findings simplify the process of using VM Manager's Patch Compliance feature, which is in preview. The feature lets you conduct patch management at the organization level across all of your projects. Currently, VM Manager supports patch management at the single project level.

  • MFay
  • New member
  • Offline

Re: Professional Cloud Security Engineer topic 1 question 233

A and E.
he Patch feature has two main components:

Patch compliance reporting, which provides insights on the patch status of your VM instances across Windows and Linux distributions. Along with the insights, you can also view recommendations for your VM instances.
Patch deployment, which automates the operating system and software patch update process. A patch deployment schedules patch jobs. A patch job runs across VM instances and applies patches.

  • glb2
  • New member
  • Offline

Re: Professional Cloud Security Engineer topic 1 question 233

C and E, because we need to view the patch management data across multiple projects needs

Re: Professional Cloud Security Engineer topic 1 question 233

CE. VM Manager is not cross-project.

  • gical
  • New member
  • Offline

Re: Professional Cloud Security Engineer topic 1 question 233

A is wrong because according https://niveussolutions.com/mastering-os-patching-in-vm-manager-cloud-native-solution/
"VM Manager’s patching reports are specific to individual projects. As a result, there is no direct mechanism to consolidate or aggregate the patch compliance status of all projects within an organization."

Re: Professional Cloud Security Engineer topic 1 question 233

A and D
https://cloud.google.com/compute/docs/os-patch-management

Re: Professional Cloud Security Engineer topic 1 question 233

A. View patch management data in VM Manager by using OS patch management. VM Manager’s OS patch management feature allows you to view patch compliance and deployment data across multiple projects.

E. Deploy patches with VM Manager by using OS patch management. VM Manager’s OS patch management feature also allows you to automate the deployment of patches to your VMs.