You are migrating your enterprise applications to GCP Your organization is securely monitored by security team and they want visibility of all the projects in the organization. You are the lead of GCP project and have assigned org admin role for yourself in google cloud resource manager.

Homework Help: Questions and Answers: You are migrating your enterprise applications to GCP Your organization is securely monitored by security team and they want visibility of all the projects in the organization. You are the lead of GCP project and have assigned org admin role for yourself in google cloud resource manager. What IAM role in google cloud will you assign to security team to make sure no changes are made to any of these applications?

a) Org admin, project viewer
b) Org viewer, project admin
c) Org viewer, project viewer
d) org viewer, project owner

Answer

To determine the appropriate IAM (Identity and Access Management) roles to assign to the security team, we need to ensure that the team has visibility into all projects without the ability to make changes. This means they should have read-only access at both the organization and project levels.

• Org Admin: Full control at the organization level
• Org Viewer: Read-only access at the organization level
• Project Admin: Full control of all resources in a project
• Project Viewer: Read-only access to all resources in a project
• Project Owner: Full control over a project

Given Options: Step by Step Answering

a) Org admin, project viewer

• Org admin: This role provides full control over the entire organization, including the ability to make changes to projects, folders, and other resources. It does not meet the requirement for read-only access.
• Project viewer: This role provides read-only access to project resources.

b) Org viewer, project admin

• Org viewer: This role provides read-only access to view the organization’s resources, which is appropriate for the security team’s needs.
• Project admin: This role provides full control over the project’s resources, including the ability to make changes, which does not meet the requirement for read-only access.

c) Org viewer, project viewer

• Org viewer: Provides read-only access to view the organization’s resources.
• Project viewer: Provides read-only access to view the project’s resources.
• This combination provides read-only access at both the organization and project levels, which aligns with the requirement.

d) Org viewer, project owner

• Org viewer: Provides read-only access to view the organization’s resources.
• Project owner: This role provides full control over the project, including the ability to make changes, which does not meet the requirement for read-only access.

Final Answer

Based on the above analysis, the correct answer is:

c) Org viewer, project viewer

Org viewer provides the security team with read-only access to both the organization and project resources, ensuring visibility without the ability to make changes.

Learn More: Homework Help

Q. Development, QA, and production environments should all be configured identically, with ______ credentials used in each environment.

Q. Project XYZ deals with account opening for retail customers. As a part of the KYC submission, the SOP mandates attestation by the bank for submission of account statement. Which strategy is helping the project against fraudulent account onboarding?

Q. A researcher is wondering whether the smoking habits of young adults (18 – 25 years of age) in a certain city in the US. are the same as the proportion of the general population of young adults in the U.S. A recent study stated that the proportion of young adults who reported smoking at least twice a week or more in the last month was 0.16. The researcher collected data from a random sample of 75 adults in the city of interest. Check that the conditions hold so that the sampling distribution of the z-statistic will approximately follow the standard normal distribution. Are the conditions satisfied? If not, choose the condition that is not satisfied.

Q. For a Utility client, the Development team completed migrating the Billing application to Dev environment in Google Cloud. After fixing all the Peer Review and Unit Test Case defects, code is promoted to QA environment for end-to-end testing.

Q. Which of the following is not a right set of Foundation Models available?