Home › GCP Data Engineer › cloudcomputing › gcpdeanalysisops › Which BigQuery security feature should a Data En…
Which BigQuery security feature should a Data Engineer use to obscure sensitive columns (e.g. email, phone) from non-privileged users at query time?
ABigQuery dynamic data masking (policy tags + column-level access policies + masking rules)
BPublic table with no security
CCloud Memorystore
DCloud DNS
Answer & Solution
Correct answer: A. BigQuery dynamic data masking (policy tags + column-level access policies + masking rules)
Policy tags + masking rules apply column-level masking (per PDE §4.1 + §1.1). The others aren't masking.
Related questions
Which Cloud Composer feature should a Data Engineer use to define a recurring DAG that runWhich GCP BigQuery feature should a Data Engineer use to RECOVER a table to its state fromWhich Memorystore feature should a Data Engineer enable to keep a Redis cache available duWhich Cloud SQL feature should a Data Engineer enable to recover from a regional outage wiWhich GCP service should a Data Engineer use to QUERY logs from Dataflow / BigQuery / Pub/Which GCP service should a Data Engineer use to MONITOR pipeline + warehouse metrics (DataWhich BigQuery capacity model should a Data Engineer choose for predictable, steady-state Which GCP service should a Data Engineer use to PREPARE unstructured text for RAG (retriev