PROFESSIONAL-CLOUD-SECURITY-ENGINEER · Question #318
PROFESSIONAL-CLOUD-SECURITY-ENGINEER Question #318: Real Exam Question with Answer & Explanation
Sign in or unlock PROFESSIONAL-CLOUD-SECURITY-ENGINEER to reveal the answer and full explanation for question #318. The question stem and answer options stay visible for context.
Question
A security audit uncovered several inconsistencies in your project's Identity and Access Management (IAM) configuration. Some service accounts have overly permissive roles, and a few external collaborators have more access than necessary. You need to gain detailed visibility into changes to IAM policies, user activity, service account behavior, and access to sensitive projects. What should you do?
Options
- AConfigure Google Cloud Functions to be triggered by changes to IAM policies. Analyze changes
- BEnable the metrics explorer in Cloud Monitoring to follow the service account authentication
- CUse Cloud Audit Logs. Create log export sinks to send these logs to a security information and
- DDeploy the OS Config Management agent to your VMs. Use OS Config Management to create
Unlock PROFESSIONAL-CLOUD-SECURITY-ENGINEER to see the answer
You've previewed enough free PROFESSIONAL-CLOUD-SECURITY-ENGINEER questions. Unlock PROFESSIONAL-CLOUD-SECURITY-ENGINEER for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.