🔥 3-day streak
Professional Cloud Architect100 / 169
Question 100 of 169
A financial services company must grant its internal audit team the ability to read configuration and metadata across all projects in an organization to verify controls, but auditors must never be able to modify resources or read customer data. The security team wants to avoid over-provisioning that comes with broad predefined roles. Which approach best follows least-privilege while satisfying the auditors' need for org-wide read visibility?
Reviewed for accuracy · Report an issueNext question