You are a security team member at an organization that uses a single GCP project. This project contains credit card payment processing systems, web applications, and data processing systems. Your goal is to reduce the number of systems that are subject to PCI DSS audit requirements. What should you do?