Question: 1/50
Your organization wants all newly created Google Cloud projects to prohibit public access to Cloud Storage buckets by default, even if developers attempt to grant allUsers or allAuthenticatedUsers access. What should you implement?
Enable Organization Policy constraints to enforce Public Access Prevention on Cloud Storage buckets
Use VPC Service Controls to prevent exfiltration from Cloud Storage buckets
Enable Uniform bucket-level access on all buckets and remove ACLs
Configure Cloud Armor to block requests to storage.googleapis.com from the public internet