GCP Security
Google Cloud Platform security architecture and services
GCP Security encompasses the services, features, and best practices for securing workloads and data in Google Cloud Platform environments.
Core Security Services
- Cloud IAM - Identity and Access Management
- Cloud Identity - Identity management platform
- Resource Manager - Organizational hierarchy and policies
- Cloud KMS - Key Management Service
- Secret Manager - Secrets storage and access
- Certificate Authority Service - Private CA management
Security Monitoring & Detection
- Security Command Center - Security and risk management
- Chronicle - Security analytics platform
- Cloud Logging - Centralized logging
- Cloud Monitoring - Metrics and alerting
- Event Threat Detection - Threat detection for logs
Network Security
- VPC - Virtual Private Cloud
- Cloud Firewall - Network firewall rules
- Cloud Armor - DDoS and WAF protection
- Cloud NAT - Network address translation
- Private Google Access - Private connectivity
- VPC Service Controls - Data exfiltration prevention
Compliance & Governance
- Organization policies
- Access Context Manager
- Assured Workloads
- Compliance Reports Manager
- Data residency controls
- BeyondCorp Enterprise (Zero Trust)