Google Cloud Professional Cloud Security Engineer — Question 274

A database administrator notices malicious activities within their Cloud SQL instance. The database administrator wants to monitor the API calls that read the configuration or metadata of resources. Which logs should the database administrator review?

Answer options

• A. Admin Activity
• B. System Event
• C. Access Transparency
• D. Data Access

Correct answer: D

Explanation

The correct answer is D, as Data Access logs specifically track API calls that read or modify data, including configuration and metadata. The other options do not focus on data access; Admin Activity logs track administrative actions, System Event logs monitor system-level events, and Access Transparency provides insights into Google Cloud's access to your data but does not detail API calls.