security-engineer video for your organization operates in a highly regulated industry and must enforce strict controls for temporary access to sensitive Google
Your organization operates in a highly regulated industry and must enforce strict controls for temporary access to sensitive Google Cloud resources. Currently, Access Approval is used to manage access, but your compliance team now requires using a custom signing key stored in a hardware security module (HSM) located outside of Google Cloud. You need to configure Access Approval to meet these compliance requirements. What should you do?