Q: **CASE STUDY: HealthCare360** **Company Overview:** HealthCare360 provides EHR systems to hospitals in NA and EU. **Current Environment:** Isolated on-prem deployments. Fragmented data. **Business Requirements:** Centralize EHR in cloud. Enable cross-hospital research. Ensure compliance. **Executive Statements:** CEO: 'Transforming to SaaS.' CFO: 'Need cost attribution per tenant.' CSO: 'Zero compromise on HIPAA/GDPR.' **Technical Requirements:** Multi-region active-active deployment. Microservices on GKE. End-to-end encryption (CMEK). Strict network perimeters. **Constraints:** Zero data loss (RPO=0). RTO < 15 minutes. HIPAA (US) and GDPR (EU) compliance. **QUESTION:** To meet the CSO's requirement for strict network perimeters and HIPAA compliance, how should you protect the patient data stored in Cloud Storage and BigQuery?

Identify the GCP service designed to mitigate data exfiltration risks for managed APIs.

Q: What mistakes do candidates make on this GCP PCA question?

Confusing Cloud Armor (WAF for apps) with VPC Service Controls (perimeter for APIs).

Question 1

**CASE STUDY: HealthCare360**

**Company Overview:** HealthCare360 provides EHR systems to hospitals in NA and EU.
**Current Environment:** Isolated on-prem deployments. Fragmented data.
**Business Requirements:** Centralize EHR in cloud. Enable cross-hospital research. Ensure compliance.
**Executive Statements:** CEO: 'Transforming to SaaS.' CFO: 'Need cost attribution per tenant.' CSO: 'Zero compromise on HIPAA/GDPR.'
**Technical Requirements:** Multi-region active-active deployment. Microservices on GKE. End-to-end encryption (CMEK). Strict network perimeters.
**Constraints:** Zero data loss (RPO=0). RTO < 15 minutes. HIPAA (US) and GDPR (EU) compliance.

**QUESTION:**
To meet the CSO's requirement for strict network perimeters and HIPAA compliance, how should you protect the patient data stored in Cloud Storage and BigQuery?

Accepted Answer

Identify the GCP service designed to mitigate data exfiltration risks for managed APIs.

Question 2

What mistakes do candidates make on this GCP PCA question?

Accepted Answer

Confusing Cloud Armor (WAF for apps) with VPC Service Controls (perimeter for APIs).

How to approach this question

Full Answer

Common mistakes

Practice the full GCP Professional Cloud Architect Practice Exam 1

More questions from this exam