A recent security audit revealed issues in your gcp video

Full Certification Question

A recent security audit revealed issues in your project's Identity and Access Management (IAM) setup. Some service accounts have roles that are too permissive, and a few external collaborators have more access than needed. You need detailed insight into changes made to IAM policies, user actions, service account activities, and access to sensitive projects. What steps should you take?