Google Cloud Associate Cloud Engineer — Question 179

You are performing a monthly security check of your Google Cloud environment and want to know who has access to view data stored in your Google Cloud
Project. What should you do?

Answer options

• A. Enable Audit Logs for all APIs that are related to data storage.
• B. Review the IAM permissions for any role that allows for data access.
• C. Review the Identity-Aware Proxy settings for each resource.
• D. Create a Data Loss Prevention job.

Correct answer: B

Explanation

The correct option is B because reviewing IAM permissions allows you to identify which roles have access to data, ensuring that only authorized users can view sensitive information. Option A, while useful for tracking access, does not directly show who has permissions. Option C focuses on proxy settings, which are not primarily concerned with data access. Option D is related to preventing data loss rather than assessing access rights.