Google Cloud Professional Cloud Security Engineer — Question 15
A business unit at a multinational corporation signs up for GCP and starts moving workloads into GCP. The business unit creates a Cloud Identity domain with an organizational resource that has hundreds of projects.
Your team becomes aware of this and wants to take over managing permissions and auditing the domain resources.
Which type of access should your team grant to meet this requirement?
Answer options
- A. Organization Administrator
- B. Security Reviewer
- C. Organization Role Administrator
- D. Organization Policy Administrator
Correct answer: A
Explanation
The Organization Administrator role is necessary as it grants full access to manage permissions and auditing for all resources within the organization. The other roles, such as Security Reviewer, Organization Role Administrator, and Organization Policy Administrator, do not provide the comprehensive management capabilities needed to oversee permissions across the entire domain.