CASE STUDY: Dress4Win
Company Overview: Dress4Win is a web-based retail company that helps users organize their wardrobes.
Current Environment: Colocated data center. Tomcat app servers, Nginx web servers, MySQL databases, Redis caching. 100TB of image data on SAN.
Business Requirements: Migrate to cloud to handle seasonal spikes (Black Friday). Reduce CapEx. Enable rapid prototyping.
Executive Statements: CEO: 'Innovate faster, stop worrying about servers.' CFO: 'Move to OpEx. Ensure PCI-DSS compliance.' CTO: 'Modernize stack but migrate quickly first.'
Technical Requirements: Secure hybrid connectivity during migration. PCI-DSS compliance. Automated scaling. CI/CD for microservices.
Constraints: Migration must be completed before Q4 holiday season (6 months). Limited budget for refactoring during initial migration.
QUESTION:
Given the CTO's statement and the 6-month constraint, which migration strategy should you recommend for the initial phase?
GCP PCA · Question 08 · Compliance Design
CASE STUDY: Dress4Win
Company Overview: Dress4Win is a web-based retail company that helps users organize their wardrobes.
Current Environment: Colocated data center. Tomcat app servers, Nginx web servers, MySQL databases, Redis caching. 100TB of image data on SAN.
Business Requirements: Migrate to cloud to handle seasonal spikes (Black Friday). Reduce CapEx. Enable rapid prototyping.
Executive Statements: CEO: 'Innovate faster, stop worrying about servers.' CFO: 'Move to OpEx. Ensure PCI-DSS compliance.' CTO: 'Modernize stack but migrate quickly first.'
Technical Requirements: Secure hybrid connectivity during migration. PCI-DSS compliance. Automated scaling. CI/CD for microservices.
Constraints: Migration must be completed before Q4 holiday season (6 months). Limited budget for refactoring during initial migration.
QUESTION:
To meet the CFO's requirement for PCI-DSS compliance, how should you secure the payment processing environment in GCP?
Answer options:
Place all resources in a single project and use IAM basic roles to restrict access.
Isolate the payment processing resources in a dedicated GCP project and apply a VPC Service Controls perimeter.
Encrypt all data in transit using SSL and disable encryption at rest to improve database performance.
Use Cloud Data Loss Prevention (DLP) to mask credit card numbers before storing them in a public Cloud Storage bucket.
50 questions · hints · full answers · grading
Expert