🔥 3-day streak
Professional Cloud Architect144 / 169
Question 144 of 169

A fintech company runs a set of microservices on GKE that connect to a Cloud SQL database. Currently, the database password is stored as a plaintext value in a Kubernetes ConfigMap. A security audit has flagged this as a critical finding. The security team requires that credentials be centrally stored, encrypted at rest, access-controlled via IAM, and that every credential access be auditable. Which approach best satisfies these requirements?

Reviewed for accuracy · Report an issueNext question