Your company operates a multi-tenant analytics platform on Google Cloud. All customer data is stored in separate BigQuery datasets that reside in a single project. A Dataflow pipeline, executed by a dedicated service account, loads transformed data into every customer's dataset nightly. Each customer's analysts must be able to query only their own dataset, never see other customers' data, and must not create or modify tables. The central operations team needs to deploy, update, and monitor all Dataflow jobs but must be prevented from reading any customer data. Which IAM design best applies the principle of least privilege while meeting these requirements?
Grant each customer's analysts the primitive Viewer role on the project; grant the Dataflow worker service account roles/bigquery.user; grant the operations team roles/dataflow.admin and roles/bigquery.dataViewer at the project level.
Grant each customer's Google group roles/bigquery.dataViewer at the project level; grant the Dataflow service account roles/bigquery.dataOwner at the project level; grant the operations team roles/owner on the project.
Create a separate service account for each customer's pipeline and grant it roles/bigquery.admin on the customer's dataset; grant the operations team roles/dataflow.viewer at project level; assign no roles to customer groups and share query results through authorized views.
Grant each customer's Google group roles/bigquery.dataViewer on only its dataset; grant the Dataflow worker service account roles/bigquery.dataEditor on every customer dataset; grant the operations team roles/dataflow.admin (and no BigQuery data roles) at the project level.
Granting every customer's Google Workspace group the BigQuery Data Viewer role (dataset-level) restricts them to read-only access on their own dataset and prevents access to others. Giving the Dataflow worker service account BigQuery Data Editor on each dataset lets the pipeline append and modify tables during nightly loads without broader permissions. Assigning the operations team the Dataflow Admin role at the project level allows full control over pipeline creation, update, and monitoring, while withholding any BigQuery data roles ensures they cannot query customer data. The solution therefore enforces separation between tenants, limits privileges to the minimum required for each actor, and satisfies the stated constraints. The other options either grant project-wide visibility to customers, let operations read data, or require unnecessary service accounts, violating least-privilege guidance.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is the principle of least privilege in IAM roles?
Open an interactive chat with Bash
How does `roles/bigquery.dataViewer` differ from other BigQuery roles?
Open an interactive chat with Bash
Why does the operations team require the `roles/dataflow.admin` role instead of BigQuery roles?
Open an interactive chat with Bash
What is an IAM role in GCP?
Open an interactive chat with Bash
Why do we use service accounts for Dataflow pipelines?
Open an interactive chat with Bash
How does BigQuery enforce dataset-level access using roles?
Open an interactive chat with Bash
GCP Professional Data Engineer
Designing data processing systems
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99
$19.99/mo
Billed monthly, Cancel any time.
3 Month Pass
$44.99
$14.99/mo
One time purchase of $44.99, Does not auto-renew.
MOST POPULAR
Annual Pass
$119.99
$9.99/mo
One time purchase of $119.99, Does not auto-renew.
BEST DEAL
Lifetime Pass
$189.99
One time purchase, Good for life.
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .