GCPcloud~30 mins

Security Command Center overview in GCP - Mini Project: Build & Apply

Choose your learning style9 modes available

Learn Why Deep Visual Try Challenge Project Recall Time

Security Command Center overview

📖 Scenario: You are a cloud security analyst at a company using Google Cloud Platform (GCP). Your manager wants you to set up a basic Security Command Center (SCC) configuration to monitor security risks and vulnerabilities across your cloud projects.

🎯 Goal: Build a simple Security Command Center setup by creating a resource to hold findings, configuring a notification channel, and enabling a security source to detect threats.

📋 What You'll Learn

Create a Security Command Center organization settings resource

Add a notification configuration with a Pub/Sub topic

Enable a security source for vulnerability scanning

Verify the final SCC configuration includes organization settings, notification config, and source

💡 Why This Matters

🌍 Real World

Security Command Center helps organizations monitor and manage security risks across their Google Cloud resources in one place.

💼 Career

Cloud security analysts and engineers use SCC to detect vulnerabilities, receive alerts, and respond to threats quickly.

Progress0 / 4 steps

Create Security Command Center organization settings

Create a resource called organizationSettings with the exact organization ID 123456789 and set the enableAssetDiscovery field to true.

GCP

# Create organizationSettings resource with organization ID 123456789 and enableAssetDiscovery true
# Your code here

Need a hint?

Use a dictionary with keys name and enableAssetDiscovery.

Add a notification configuration

Create a variable called notificationConfig with the name organizations/123456789/notificationConfigs/my-notification and set the pubsubTopic to projects/my-project/topics/security-alerts.

GCP

organizationSettings = {
    "name": "organizations/123456789/organizationSettings",
    "enableAssetDiscovery": true
}
# Create notificationConfig with the specified name and pubsubTopic
# Your code here

Need a hint?

Use a dictionary with keys name and pubsubTopic.

Enable a security source for vulnerability scanning

Create a variable called source with the name organizations/123456789/sources/vulnerability-scanner and set the displayName to Vulnerability Scanner.

GCP

organizationSettings = {
    "name": "organizations/123456789/organizationSettings",
    "enableAssetDiscovery": true
}

notificationConfig = {
    "name": "organizations/123456789/notificationConfigs/my-notification",
    "pubsubTopic": "projects/my-project/topics/security-alerts"
}
# Create source with the specified name and displayName
# Your code here

Need a hint?

Use a dictionary with keys name and displayName.

Complete the Security Command Center configuration

Combine the variables organizationSettings, notificationConfig, and source into a dictionary called sccConfig with keys organizationSettings, notificationConfigs (a list containing notificationConfig), and sources (a list containing source).

GCP

organizationSettings = {
    "name": "organizations/123456789/organizationSettings",
    "enableAssetDiscovery": true
}

notificationConfig = {
    "name": "organizations/123456789/notificationConfigs/my-notification",
    "pubsubTopic": "projects/my-project/topics/security-alerts"
}

source = {
    "name": "organizations/123456789/sources/vulnerability-scanner",
    "displayName": "Vulnerability Scanner"
}
# Create sccConfig dictionary combining all previous variables
# Your code here

Need a hint?

Create a dictionary with keys and assign the existing variables accordingly.