You are responsible for managing a set of Cloud Functions in your organization's Google Cloud environment. A recent security audit found that secrets were stored in the environment variables of some functions. You need to implement a solution to detect secrets in a timely manner. What should you do?

Exam-Like

Implement regular peer reviews to assess the environment variables and identify secrets in your Cloud Functions. Raise a security incident if secrets are discovered.

Implement a Cloud Function that scans the environment variables multiple times a day, and creates a finding in Security Command Center if secrets are discovered.

Use Sensitive Data Protection to scan the environment variables multiple times per day, and create a finding in Security Command Center if secrets are discovered.

Integrate dynamic application security testing into the CI/CD pipeline that scans the application code for the Cloud Functions. Fail the build process if secrets are discovered.

Google Professional Cloud Security Engineer

Get started today

Comments

You are responsible for managing a set of Cloud Functions in your organization's Google Cloud environment. A recent security audit found that secrets were stored in the environment variables of some functions. You need to implement a solution to detect secrets in a timely manner. What should you do?