Your company plans to transfer all documents from a secure internal NAS drive to a Google Cloud Storage (GCS) bucket. These documents contain personally identifiable information (PII) and sensitive customer data. Additionally, your company's tax auditors require access to certain documents. What security strategy would you recommend for the GCS bucket?

Real Exam

Create randomized bucket and object names. Enable public access, but only provide specific file URLs to individuals without Google accounts who need access.

2.8%

Use signed URLs to generate time-bound access to objects.

38.9%

Grant no Google Cloud Identity and Access Management (Cloud IAM) roles to users, and use granular ACLs on the bucket.

19.4%

Grant IAM read-only access to users, and use default ACLs on the bucket.

38.9%

Google Associate Cloud Engineer

Get started today

Comments