An employee was terminated, but their access to Google Cloud was not removed until 2 weeks later. You need to find out if this employee accessed any sensitive customer information after their termination. What should you do?
An employee was terminated, but their access to Google Cloud was not removed until 2 weeks later. You need to find out if this employee accessed any sensitive customer information after their termination. What should you do?
To determine if the terminated employee accessed any sensitive customer information after their termination, you should view Data Access audit logs in Cloud Logging and search for the user's email as the principal. Data Access audit logs specifically track API calls that read, modify, or create user-provided resource data, making them the most suitable choice for identifying access to sensitive data.
C is the correct answer. We are trying to find out if any sensitive data was accessed. Data access logs are the only logs that show this. C is the only option that mentions data access logs.
Guys, do you know which answers are the correct answers on this website? The website's answers or the most voted ones? I'm preparing for the exam and I need a quick and certain response. Thank you
Should use discussion to find out correct answer. Also usually you can find fine explain for question
C. https://cloud.google.com/logging/docs/audit#data-access
had this question today
I think option C is correct : Data Access audit logs contain API calls that read the configuration or metadata of resources, as well as user-driven API calls that create, modify, or read user-provided resource data.
option C is correct : Data Access audit logs contain API calls that read the configuration or metadata of resources, as well as user-driven API calls that create, modify, or read user-provided resource data. Kindly share the all question (<a href="/cdn-cgi/l/email-protection" class="__cf_email__" data-cfemail="4a202b3c2b29642138233922242b240a2d272b232664292527">[email protected]</a>)able to see only 120 questions
Shouldn't the correct option be A here? What does service account have to do here.
It should be C User activity generally come under audit logs
ANSWER IS C As we want to find out whether the user has accessed the data or not , so Data Acess Logs would be correct option to view that
View Data Access audit logs in Cloud Logging. Search for the user's email as the principal
C. View Data Access audit logs in Cloud Logging. Search for the user's email as the principal. Data Access audit logs provide detailed information about accesses to your Google Cloud resources. By searching for the terminated employee's email address as the principal in the Data Access audit logs, you can track their access to sensitive customer information after their termination. This approach allows you to specifically focus on data access, which is crucial for identifying any unauthorized or suspicious activities related to customer data.
The correct answer is C
I will go with option C.
https://cloud.google.com/logging/docs/audit. Data Access audit logs are disabled by default
C. View Data Access audit logs in Cloud Logging. Search for the user's email as the principal. Data Access audit logs record all activity related to accessing or modifying data, including reading, writing, and deleting operations. By searching for the terminated employee's email as the principal, you can see if they accessed any sensitive customer information after their termination. System Event Logs and Admin Activity logs may not have the details of the data accessed, so Data Access audit logs are the most appropriate option in this scenario.
Option C is more correct , as data access logs contain API , from this you can check for it
Kindly share the all question (<a href="/cdn-cgi/l/email-protection" class="__cf_email__" data-cfemail="5f342a2d373a343e29362b3e1f38323e3633713c3032">[email protected]</a>)able to see only 120 questions. I have planned exam in the next week
Option C is more correct