security-engineer video for you need to ensure that data on Compute Engine disks is encrypted at rest using keys managed by Cloud Key Management Service (KMS).
You need to ensure that data on Compute Engine disks is encrypted at rest using keys managed by Cloud Key Management Service (KMS). Cloud Identity and Access Management (IAM) permissions for these keys must be managed in a unified manner since all keys should have the same permissions. What should you do?