Answer-first summary for fast verification
Answer: Create a custom role that combines the required permissions. Grant the DevOps team the custom role on the production project.
The correct answer is C: Create a custom role that combines the required permissions. Grant the DevOps team the custom role on the production project. This approach helps enforce the principle of least privilege, ensuring that the team members have only the permissions essential to perform their job. Custom roles are user-defined and not automatically updated by Google Cloud product changes, thus preventing unintended permission broadening in the future.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
Your company utilizes an extensive array of Google Cloud services that are centralized within a single project, while each team maintains dedicated projects for testing and development purposes. The DevOps team requires access to all production services to effectively execute their responsibilities. To ensure that future updates or changes to Google Cloud products do not inadvertently expand their permissions, you aim to adhere to Google-recommended best practices. What steps should you take to achieve this?
A
Grant all members of the DevOps team the role of Project Editor on the organization level.
B
Grant all members of the DevOps team the role of Project Editor on the production project.
C
Create a custom role that combines the required permissions. Grant the DevOps team the custom role on the production project.
D
Create a custom role that combines the required permissions. Grant the DevOps team the custom role on the organization level.
No comments yet.