Cloud Asset Inventory
View, monitor and analyze Google Cloud and Anthos assets across projects and services
Cloud Audit Logs
Gain visibility into who did what, when and where for all user activity on Google Cloud
Data Loss Prevention (DLP)
Fully managed service designed to help you discover, classify, and protect your most sensitive data
Cloud HSM
Protect cryptographic keys with a fully managed hardware security module services
Cloud Key Management Service
Manage encryption keys on Google Cloud
Security Command Center
A centralized security and risk management platform for your GCP resources
- Asset Discovery and Inventory
- Sensitive Data Identification
- Threat Detection
- Threat Prevention
VPC Service Controls
Protect sensitive data in Google Cloud services using security perimeters It functions like a firewall for GCP APIs
Allows to apply access level to services as well
Access polices are automatically created in GCP by certain services and cannot be managed by customer
Cloud Armor
Cloud Armor is a DDoS protection and Web Application Firewall (WAF) service
Can be used along with HTTPS Load Balancer
Has two tiers:
- Standard Pay-As-You-Go (PAYG)
- Managed Protection Plus (Starts at $3,000/ month)