Skip to content

GCP Events

Google Cloud Platform (GCP) specific security events, detections, and incident response procedures. These events are typically sourced from Cloud Audit Logs, Cloud Logging, Security Command Center, and other GCP native logging services.

  • Cloud Audit Logs: Administrative activity and data access logs
  • Cloud Logging: Application and system logs aggregation
  • Security Command Center: Security findings and asset inventory
  • VPC Flow Logs: Network traffic analysis
  • Cloud Monitoring: Infrastructure and application metrics