Remove the Identity and Access Management (IAM) granting access to all Users from the buckets.

Apply the organization policy storage.uniformBucketLevelAccess to prevent regressions.

Query the data access logs to report on unauthorized access.

Change permissions to limit access for authorized users.

Enforce a VPC Service Controls perimeter around all the production projects to immediately stop any unauthorized access.

Review the administrator activity audit logs to report on any unauthorized access.

Change bucket permissions to limit access.

Query the data access audit logs for any unauthorized access to the buckets.

After the misconfiguration is corrected, mute the finding in the Security Command Center.