As a cloud architect at a financial institution, you are responsible for securely storing mortgage loan approval documents on Google Cloud Storage. The institution's policy mandates that any updates to these approval documents must be saved as new, separate files rather than modifying the existing ones. You are tasked with configuring the storage in such a way that no document can be deleted or overwritten for the next 5 years. What steps should you take to fulfill this requirement?

Exam-Like

Create a retention policy on the bucket for the duration of 5 years. Create a lock on the retention policy.

70.6%

Create a retention policy organizational constraint constraints/storage.retentionPolicySeconds at the organization level. Set the duration to 5 years.

13.7%

Use a customer-managed key for the encryption of the bucket. Rotate the key after 5 years.

3.9%

Create a retention policy organizational constraint constraints/storage.retentionPolicySeconds at the project level. Set the duration to 5 years.

11.8%

Google Professional Cloud Architect

Get started today

Comments