- Home
- Google Cloud Certified - Professional Google Workspace Administrator
- Google.Google-Workspace-Administrator.v2025-11-14.q46
- Question 31
Valid Google-Workspace-Administrator Dumps shared by ExamDiscuss.com for Helping Passing Google-Workspace-Administrator Exam! ExamDiscuss.com now offer the newest Google-Workspace-Administrator exam dumps, the ExamDiscuss.com Google-Workspace-Administrator exam questions have been updated and answers have been corrected get the newest ExamDiscuss.com Google-Workspace-Administrator dumps with Test Engine here:
Access Google-Workspace-Administrator Dumps Premium Version
(103 Q&As Dumps, 35%OFF Special Discount Code: freecram)
<< Prev Question Next Question >>
Question 31/46
You recently noticed a suspicious trend in your organization's Google Drive usage. Several users have shared sensitive documents outside the organization, potentially violating your company's data security policy. You need to identify the responsible users and the extent of the unauthorized sharing. What should you do?
Correct Answer: C
The core of the problem is to identify the responsible users and the extent of past unauthorized sharing. The Security Investigation Tool is designed precisely for this purpose. It allows administrators to search and analyze various audit logs, including Drive logs, to pinpoint specific events, users, and data.
Here's why the other options are less appropriate as the first or most direct action for this specific problem:
* A. Review the organization's sharing policies in the Admin console, and update the policies to prevent external sharing. This is a crucial preventative measure for the future, and a necessary step after identifying the scope of the problem. However, it won't help you identify who shared what in the past.
* B. Use the security health page to identify misconfigured sharing settings in Drive. The security health page provides an overview of your security posture and can highlight general misconfigurations.
While useful for identifying potential vulnerabilities, it won't give you the granular details of specific users and shared documents that have already occurred, which is what the question asks for.
* D. Create an activity rule in the Security Center to alert you of future external sharing events.
Similar to option A, this is a future-oriented preventative and monitoring measure. It will help catch future violations but won't provide information about the past unauthorized sharing that has already happened.
References from Google Workspace Administrator:
* Security investigation tool: This tool is explicitly designed for identifying, triaging, and taking action on security issues. It allows administrators to search and analyze logs from various Google Workspace services, including Drive, to investigate specific events like external sharing.
Reference: Google Workspace Admin Help: About the security investigation tool Reference: Google Workspace Admin Help: Investigate security issues using the investigation tool (Specifically mentions investigating Drive sharing events).
Drive audit log events: The security investigation tool leverages audit logs. Drive audit logs capture events such as document sharing, changes in sharing permissions, and access.
Reference: Google Workspace Admin Help: Drive audit log events
Here's why the other options are less appropriate as the first or most direct action for this specific problem:
* A. Review the organization's sharing policies in the Admin console, and update the policies to prevent external sharing. This is a crucial preventative measure for the future, and a necessary step after identifying the scope of the problem. However, it won't help you identify who shared what in the past.
* B. Use the security health page to identify misconfigured sharing settings in Drive. The security health page provides an overview of your security posture and can highlight general misconfigurations.
While useful for identifying potential vulnerabilities, it won't give you the granular details of specific users and shared documents that have already occurred, which is what the question asks for.
* D. Create an activity rule in the Security Center to alert you of future external sharing events.
Similar to option A, this is a future-oriented preventative and monitoring measure. It will help catch future violations but won't provide information about the past unauthorized sharing that has already happened.
References from Google Workspace Administrator:
* Security investigation tool: This tool is explicitly designed for identifying, triaging, and taking action on security issues. It allows administrators to search and analyze logs from various Google Workspace services, including Drive, to investigate specific events like external sharing.
Reference: Google Workspace Admin Help: About the security investigation tool Reference: Google Workspace Admin Help: Investigate security issues using the investigation tool (Specifically mentions investigating Drive sharing events).
Drive audit log events: The security investigation tool leverages audit logs. Drive audit logs capture events such as document sharing, changes in sharing permissions, and access.
Reference: Google Workspace Admin Help: Drive audit log events
- Question List (46q)
- Question 1: You need to ensure that data owned by former employees remai...
- Question 2: Your company's legal department has issued a litigation hold...
- Question 3: You need to grant a specific set of users in your company ac...
- Question 4: Your company's help desk is receiving technical support tick...
- Question 5: Your organization wants to ensure that all employees who use...
- Question 6: Your organization recently deployed Google Workspace. Over 3...
- Question 7: Your organization has hired temporary employees to work on a...
- Question 8: Your company has purchased Gemini licenses for a subset of e...
- Question 9: You are designing a group structure for your company that wi...
- Question 10: Your organization has experienced a recent increase in unaut...
- Question 11: An executive at your organization asked you to give their ex...
- Question 12: You work for a global organization that has offices in the U...
- Question 13: Users at your company are reporting that they are not receiv...
- Question 14: Your company's sales team writes many business proposals in ...
- Question 15: Your company wants to minimize distractions and inappropriat...
- Question 16: Your company handles sensitive client data and needs to main...
- Question 17: A user accessing sensitive data is experiencing repeated iss...
- Question 18: Your company provides shared Chromebook workstations for emp...
- Question 19: Your organization allows employees to use their personal mob...
- Question 20: You are configuring Google Chat for your organization. Using...
- Question 21: You manage Chrome Enterprise browsers for your large organiz...
- Question 22: You are onboarding a new employee who will use a company-pro...
- Question 23: A team of temporary employees left your organization after c...
- Question 24: Multiple users in your organization are reporting that Calen...
- Question 25: You are applying device and user policies for employees in y...
- Question 26: Your organization is about to conduct its biannual risk asse...
- Question 27: Your company's security team should be able to investigate u...
- Question 28: Your organization handles a significant amount of sensitive ...
- Question 29: An employee with a Workspace Business Plus license at your c...
- Question 30: Your organization needs an approval application for purchase...
- Question 31: You recently noticed a suspicious trend in your organization...
- Question 32: Your company's security team has requested two requirements ...
- Question 33: You've noticed an increase in phishing emails that contain l...
- Question 34: Your organization has a Shared Drive with 150 users organize...
- Question 35: Your organization is concerned about unauthorized access att...
- Question 36: Your company distributes an internal newsletter that contain...
- Question 37: Your company wants to start using Google Workspace for email...
- Question 38: Your organization requires enhanced privacy and security whe...
- Question 39: Today your company signed up for Google Workspace Business S...
- Question 40: An employee is leaving your company and has numerous files s...
- Question 41: An employee at your organization may be sharing confidential...
- Question 42: You are managing the buildings and resources for your organi...
- Question 43: An employee using a Workspace Enterprise Standard license wa...
- Question 44: You are investigating a potential data breach. You need to s...
- Question 45: Per regulatory requirements, your company is required to kee...
- Question 46: A department at your company wants access to the latest AI-p...
[×]
Download PDF File
Enter your email address to download Google.Google-Workspace-Administrator.v2025-11-14.q46.pdf