Google Cloud Platform Blog
Product updates, customer stories, and tips and tricks on Google Cloud Platform
Toward effective cloud governance: designing policies for GCP customers large and small
Friday, February 2, 2018
By Grace Mollison, Cloud Solutions Architect, and Marco Cavalli, Product Manager
When it comes to security and governance, not all orgs are created equal. A mom-and-pop shop has different needs than a large enterprise, and startups have different requirements than, say, a local government.
Google Cloud Platform
(GCP) customers come in all shapes and sizes, and so do the identity and access management policies that they put in place. Whether you work for a small company and wear many hats, or for a large enterprise with a clearly defined role, you need a policy baseline to implement your GCP environment.
To get you off to a good start, we've written a series of articles that look at typical customer environments and their identity postures. Using a hypothetical customer, each article shows you how to design GCP policies that meet the policy requirements of the reference organization.
In a first phase, we’ve published use cases about the following organizations:
Enterprise customers
can have complex organizational structures and mature policies often developed over many years. Typically, they have many users to consider and manage.
Startups
typically have simpler policy requirements and need to be able to move quickly. However, they still need to ensure that appropriate safeguards are in place, particularly around protection of intellectual property.
Education and training
providers need to be able to automatically create and destroy safe and sandboxed student environments.
In addition to these articles, we also published a tutorial based on the fictional startup customer to guide you through many of the implementation steps. You can find the tutorial
here
.
Of course, this is just the beginning, and we are well aware that one size doesn't fit all
—
or even most! So we encourage you to read them all and blend their guidance to fit your specific use case. In the meantime, if you have any suggestions for more use cases, please let us know we'll add them to our list.
Free Trial
GCP Blogs
Big Data & Machine Learning
Kubernetes
GCP Japan Blog
Firebase Blog
Apigee Blog
Popular Posts
12 best practices for user account, authorization and password management
Cloud TPU machine learning accelerators now available in beta
Introducing Agones: Open-source, multiplayer, dedicated game-server hosting built on Kubernetes
API design: Choosing between names and identifiers in URLs
Why you should pick strong consistency, whenever possible
Labels
Announcements
126
Big Data & Machine Learning
127
Compute
235
Containers & Kubernetes
55
CRE
22
Customers
106
Developer Tools & Insights
126
Events
38
Infrastructure
40
Management Tools
64
Networking
37
Open
1
Open Source
128
Partners
90
Pricing
27
Security & Identity
72
Solutions
20
Stackdriver
19
Storage & Databases
143
Weekly Roundups
16
Feed
Subscribe by email
Certified Professional
Cloud Architect
Demonstrate your proficiency to design, build and manage solutions on Google Cloud Platform.
Learn More
Technical questions? Check us out on
Stack Overflow
.
Subscribe to
our monthly newsletter
.
Google
on
Follow @googlecloud
Follow
Follow