Question: 1/50
Your organization wants to bootstrap Google Cloud so each product team can create projects safely while adhering to centralized policies. You need a scalable way to apply consistent IAM, network restrictions, and security settings across many projects. What should you do?
Create a single shared project for all teams and manage access with basic roles
Use Cloud Resource Manager hierarchy with folders per team/environment and apply Organization Policies and IAM at folder/org level
Let each team create projects in any location and run periodic scripts to correct permissions
Use only project-level IAM bindings and avoid organization-level constraints to reduce complexity