Google Cloud Professional Collaboration Engineer — Question 46

Your organization has just appointed a new CISO. They have signed up to receive admin alerts and just received an alert for a suspicious login attempt. They are trying to determine how frequently suspicious login attempts occur within the organization. The CISO has asked you to provide details for each user account that has had a suspicious login attempt in the past year and the number of times it occurred for each account.
What action should you take to meet these requirements?

Answer options

• A. Use the login audit report to export all suspicious login details for analysis.
• B. Create a custom dashboard with the security investigation tool showing suspicious logins.
• C. Use the account activity report to export all suspicious login details for analysis.
• D. Create a custom query in BigQuery showing all suspicious login details.

Correct answer: A

Explanation

The correct answer is A because the login audit report specifically provides details regarding suspicious login attempts, which is exactly what the CISO is looking for. Option B, while useful, does not provide the detailed analysis needed. Option C is incorrect as it focuses on account activity rather than specifically on login attempts. Option D, although it can show data, does not directly align with the need for a report on suspicious logins.