🔥 3-day streak
Professional Cloud Architect83 / 169
Question 83 of 169

A financial services company stores sensitive customer statements in Cloud Storage buckets. During a security review, auditors find that individual objects have inconsistent legacy ACLs, making it impossible to reason about who can access data at scale. The security team wants to enforce access exclusively through IAM policies at the bucket level and eliminate per-object ACLs going forward, while ensuring the setting cannot be casually reverted by bucket owners. What should the architect recommend?

Reviewed for accuracy · Report an issueNext question