CASE STUDY: HealthSecure. 50M patient records. Legacy mainframe, on-prem SAN (100TB), .NET portal. Req: Modernize portal, secure hospital sharing, fast audits. CEO: Modern UX. CFO: Automate audits. CISO: Zero breaches. Tech: HIPAA, CMEK, audit logging, API gateway, DR (1h RPO/4h RTO). Constraints: No public DB IPs, Dev/Ops separation, US data only, mainframe stays on-prem via VPN.
To meet the 1-hour RPO and 4-hour RTO for the modernized portal database, which architecture should you implement?
GCP PCA · Question 19 · Domain 4: Analyzing and Optimizing Technical and Business Processes
CASE STUDY: HealthSecure. 50M patient records. Legacy mainframe, on-prem SAN (100TB), .NET portal. Req: Modernize portal, secure hospital sharing, fast audits. CEO: Modern UX. CFO: Automate audits. CISO: Zero breaches. Tech: HIPAA, CMEK, audit logging, API gateway, DR (1h RPO/4h RTO). Constraints: No public DB IPs, Dev/Ops separation, US data only, mainframe stays on-prem via VPN.
To satisfy the CFO's requirement to automate and speed up compliance audits, how should you handle Cloud Audit Logs?
Answer options:
Keep logs in Cloud Logging with default 30-day retention.
Create a log sink to export all Data Access and Admin Activity logs to BigQuery.
Export logs to a Pub/Sub topic and read them manually.
Disable Data Access logs to save storage costs.
50 questions · hints · full answers · grading
Expert