During a mock audit of your GCP environment by your security team at a large fin-tech company, they inquire about who can access data stored in the production GCP project. What is the most appropriate action to take?

Real Exam

Create a Data Loss Prevention job to identify sensitive data access.

0.0%

Examine the Identity-Aware Proxy settings for each resource to understand access controls.

10.0%

Enable Audit Logs for all APIs related to data storage to track activities.

30.0%

Review the IAM permissions for every role that grants data access to identify users with read permissions.

60.0%

Google Associate Cloud Engineer