Answer: Use Cloud Audit Logs. Create log export sinks to send these logs to a security information and event management (SIEM) solution for correlation with other event sources.

Option C is the correct answer because Cloud Audit Logs provide comprehensive visibility into IAM policy changes, user activity, service account behavior, and access to sensitive projects. These logs capture detailed information about administrative activities, data access, and system events. By exporting these logs to a SIEM solution, security teams can correlate IAM events with other security data sources, enabling advanced threat detection, anomaly identification, and comprehensive security monitoring. This approach aligns with Google Cloud security best practices for IAM monitoring and provides the detailed visibility required to address the security audit findings. Option A focuses only on IAM policy changes and lacks comprehensive coverage. Option B is limited to service account authentication events only. Option D addresses VM-level system modifications but doesn't cover IAM policies, user activity, or project access monitoring.

Author: LeetQuiz Editorial Team