How would you grant them access?

The government has ordered an audit of your company’s data. You have hired an external company to conduct the audit. They need to be able to review the data stored in your Cloud Storage buckets across eight projects.

How would you grant them access?
A . Give the auditors an Owner role on the eight buckets so that they have proper access.
B . Give them Storage Object Viewer access to the buckets in those eight projects.
C . They might need access to all projects as the audit progresses; so give them access to all Storage buckets so that you don’t have to do it repeatedly later on.
D . They might need access to all projects as the audit progresses; so give them the Editor role on all Storage buckets so that you don’t have to do it repeatedly later on.

Answer: B

Explanation:

Apply the Principle of Least Privilege and only provide read permissions on only the required

buckets. No more, no less

https://cloud.google.com/storage/docs/access-control/iam-roles

Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments