Pearson Google-Workspace-Administrator New Attempt

Create an Alert for External Sharing:

Access Google Admin Console: Go to admin.google.com and sign in with your administrator account.

Navigate to Rules: Go to "Security" > "Alert Center" > "Manage Rules".

Create a New Rule: Select "Create Rule" and choose "Drive Audit" as the event source.

Configure Rule Settings: Set the conditions to trigger alerts when files or folders are shared externally.

Set Notification Preferences: Configure who should receive the alerts and how they should be notified.

Save the Rule: Save and activate the rule to start receiving alerts on external sharing activities.

Create a Custom Dashboard for External Sharing:

Access Security Investigation Tool: In the Admin console, go to "Security" > "Investigation Tool".

Create a New Investigation: Click "Create" and select "Drive" as the data source.

Set Up Investigation Parameters: Define the parameters to track external sharing activities (e.g., file shared externally, users involved).

Create Dashboard: Save the investigation as a custom dashboard to continuously monitor external sharing activities.

Review and Monitor: Regularly review the dashboard and set up automated reports if necessary.

References

Google Workspace Admin Help - Create and manage alerts

Google Workspace Admin Help - Use the security investigation tool

Access Context-Aware Access Settings: In the Google Admin console, navigate to Security > Context-Aware Access.

Define Access Levels: Create access levels that specify the allowed geographical locations where your organization operates.

Apply Access Levels to Apps: Apply these access levels to Google Workspace applications to ensure that access is restricted based on the defined geographical locations.

Configure Policies: Set policies that deny access to Google services from locations outside the defined areas.

Test Configuration: Test the context-aware access settings to ensure they are working correctly and that unauthorized access attempts from other locations are blocked.

Monitor and Adjust: Continuously monitor the login activity and adjust the access levels as necessary to maintain security.

References:

Google Workspace Admin Help - Context-Aware Access

Google Workspace Admin Help - Setting up Context-Aware Access

2-Step Verification (2SV):

2-Step Verification adds an extra layer of security by requiring users to verify their identity using a second factor in addition to their password. This helps protect against unauthorized access, even if the password is compromised.

Google Authenticator:

Google Authenticator is a mobile app that generates time-based one-time passcodes (TOTP) for 2SV. It works even when the device is offline, providing a secure and reliable second factor for authentication.

Implementation Steps:

Enable 2-Step Verification:

Go to the Google Admin console (admin.google.com).

Navigate to Security > Authentication > 2-Step Verification.

Turn on 2-Step Verification for the organization.

Deploy Google Authenticator:

Instruct users to download the Google Authenticator app from their respective app stores (iOS or Android).

Provide guidance on setting up Google Authenticator with their Google Workspace accounts.

Users will scan a QR code provided during the setup process to link their account with the Authenticator app.

Advantages of Google Authenticator:

Security: It provides a highly secure method of 2-step verification as the codes are generated on the user's device and change every 30 seconds.

Ease of Use: It's easy to set up and use, with a straightforward user interface.

Offline Functionality: Codes can be generated even without internet access, ensuring consistent access to 2SV codes.

Why Other Options Are Less Suitable:

A. Enable additional security verification via email:

Email-based verification is less secure than app-based 2SV because email accounts can be more easily compromised.

C. Deploy browser or device certificates via Google Workspace:

While device certificates add security, they are typically used for device management and access control rather than for 2-step verification purposes.

D. Configure USB Yubikeys for all users:

USB Yubikeys are highly secure and suitable for 2SV, but they require physical distribution and management of hardware tokens, which can be logistically complex and costly. Given the context of disabled peripheral access, this option might contradict the policy of the Chief Information Security Officer.

References:

Google Workspace Admin Help: Set up 2-Step Verification

Google Workspace Security: 2-Step Verification

Create Secondary Calendar: As the team manager, create a new calendar under your Google account specifically for tracking team vacations.

Access Settings: Go to the calendar settings and navigate to "Share with specific people".

Grant Access: Add your team members and give them "Make changes to events" access, allowing them to add their vacation times directly to the calendar.

Educate Team: Inform team members on how to use this calendar to add their vacation times and check others' schedules.

Monitor Usage: Regularly review the calendar to ensure it is being used correctly and effectively by all team members.

References:

Google Workspace Admin Help - Share a Calendar

Google Workspace Admin Help - Create a Team Calendar