Your company stores sensitive PII data in a cloud storage bucket, currently encrypted with Google-managed keys. The compliance department requires all current and future objects to be encrypted with customer-managed encryption keys, with minimal effort. What is the best approach? | Google Associate Cloud Engineer Quiz