🔥 3-day streak
Professional Cloud Architect145 / 169
Question 145 of 169

A financial services company has hundreds of Google Cloud projects across multiple folders. The CISO wants a centralized way to continuously detect misconfigured resources (such as public storage buckets and overly permissive firewall rules), identify active threats like crypto-mining on Compute Engine VMs, and map findings against compliance benchmarks like CIS and PCI DSS. The solution must aggregate findings organization-wide with minimal per-project setup. Which approach best meets these requirements?

Reviewed for accuracy · Report an issueNext question