Your team is designing a Cloud Monitoring workspace to oversee multiple projects. To adhere to the principle of least privilege, which role should be assigned to the Compute Engine instances' service account for sending metric data to Cloud Monitoring?