A third-party application's data is published to a Pub/Sub topic in a separate project; push attempts to SecOps fail. Which low-latency approach is robust?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $24.99Unlock all

Prepare for the Google SecOps Professional Engineer Test with our interactive quiz. Utilize flashcards and multiple-choice questions with hints and explanations to boost your readiness and confidence.

Multiple Choice

A third-party application's data is published to a Pub/Sub topic in a separate project; push attempts to SecOps fail. Which low-latency approach is robust?

Explanation:
When you need low-latency, reliable delivery from a Pub/Sub topic to SecOps, the best approach is to use an event-driven compute resource that subscribes directly to Pub/Sub and forwards messages to SecOps as they arrive. A Cloud Run service subscribed to the Pub/Sub topic can receive each message with minimal delay and call the SecOps Ingestion API using the API key to push the data. This setup scales automatically, keeps processing close to where the data arrives, and lets you implement retries and error handling to ensure delivery remains robust. Other paths add unnecessary hops or dependencies. Pushing data through Cloud Logging exports introduces extra latency and complexity and isn’t designed for real-time forward to an external system. A Chronicle API pathway ties you to another product and may not provide the simplest, fastest direct ingestion using an API key. Sending messages to Cloud Storage and creating a feed adds storage steps and potential delays, plus broader permission requirements, which is not ideal for real-time ingestion.

When you need low-latency, reliable delivery from a Pub/Sub topic to SecOps, the best approach is to use an event-driven compute resource that subscribes directly to Pub/Sub and forwards messages to SecOps as they arrive. A Cloud Run service subscribed to the Pub/Sub topic can receive each message with minimal delay and call the SecOps Ingestion API using the API key to push the data. This setup scales automatically, keeps processing close to where the data arrives, and lets you implement retries and error handling to ensure delivery remains robust.

Other paths add unnecessary hops or dependencies. Pushing data through Cloud Logging exports introduces extra latency and complexity and isn’t designed for real-time forward to an external system. A Chronicle API pathway ties you to another product and may not provide the simplest, fastest direct ingestion using an API key. Sending messages to Cloud Storage and creating a feed adds storage steps and potential delays, plus broader permission requirements, which is not ideal for real-time ingestion.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy