Logging and monitoring

No monitoring for Custom Role changes

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

It is recommended that a metric filter and alarm be established for changes to Identity and Access Management (IAM) role creation, deletion and updating activities.

  • Recommended Mitigation

    In the User-defined Metrics section, ensure that at least one metric is present with filter text: resource.type=""iam_role"" AND protoPayload.methodName = ""google.iam.admin.v1.CreateRole"" OR protoPayload.methodName=""google.iam.admin.v1.DeleteRole"" OR protoPayload.methodName=""google.iam.admin.v1.UpdateRole""

Need help?

Get a free Security Risk Assessment. Start today

See Orca in action See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.