I'm curious about how teams monitor security settings in Google Workspace long term. I've noticed instances where things like multi-factor authentication (MFA) or admin access can change unexpectedly, which can lead to security gaps. How do others handle ongoing monitoring or audits? What systems do you have in place to track things like admin role changes or risky settings?
4 Answers
I set up alerts for our team to notify us when admin access changes, like when privileges are granted or revoked. It’s a really useful way to keep track of things. What issues have you noticed with admin access drift?
Do you find yourself frequently checking MFA settings or roles? I think regular checks are important, as even if everything’s secure at first, small changes over time (like users dropping MFA or permissions expanding) can lead to big risks down the line.
Absolutely, setting up alerts is key! By "admin access drift," I mean it seems like sometimes admins get extra access without it being reviewed later on. Like someone gets admin rights for a project and they're never reassessed afterwards. This can really open up the attack surface. I’m keen to hear how often others audit their access permissions.
Yeah, definitely! I’ve been using GAT+ for implementing data loss prevention (DLP) which has helped with tracking. It's a good tool for enhancing overall security.
Related Questions
Can't Load PhpMyadmin On After Server Update
Redirect www to non-www in Apache Conf
How To Check If Your SSL Cert Is SHA 1
Windows TrackPad Gestures