Your organization recently activated the Security Command Center {SCO standard tier.

• 1 Remove the Identity and Access Management (IAM) granting access to allusers from the buckets

• 2 Apply the organization policy storage. unifromBucketLevelAccess to prevent regressions

• 3 Query the data access logs to report on unauthorized access

• 1 Change bucket permissions to limit access

• 2 Query the data access audit logs for any unauthorized access to the buckets

• 3 After the misconfiguration is corrected mute the finding in the Security Command Center

• 1 Change permissions to limit access for authorized users

• 2 Enforce a VPC Service Controls perimeter around all the production projects to immediately stop any unauthorized access

• 3 Review the administrator activity audit logs to report on any unauthorized access

• 1 Change the bucket permissions to limit access

• 2 Query the buckets usage logs to report on unauthorized access to the data

• 3 Enforce the organization policy storage.publicAccessPrevention to avoid regressions

■■

To investigate and remediate the issue of public access to Cloud Storage buckets, you can follow these steps:

Change Bucket Permissions:

Navigate to the Cloud Storage section in the