Views:
File Security Storage provides easy deployment to Google Cloud Platform (GCP) using the Cloud Account Management Terraform template to integrate automated scanning of files as you upload them into your storage and effortlessly detect all types of malware including viruses, trojans, spyware, and more. Currently, File Security Storage only supports single subscription accounts.

Procedure

  1. Go to Cloud Storage File Security
  2. On the Inventory page, under Storage, select GCP.
  3. Click Add a single Google Cloud Project to protect buckets.
  4. Select Single Google Cloud Project, and click Next
  5. On the General information page:
    1. Enter the organization or folder ID.
    2. If you wish, you can enter a description to help identify the project.
    3. Enter the IDs of projects that you want to exclude.
    4. Select the region in which you want to deploy the terraform script.
      Note
      Note
      Currently, scanners can only be created in one region, which is pre-selected.
    5. Click Next.
  6. Click Next.
  7. On the Features and Permissions page, enable .
    • Core features and Cyber Risk Exposure Management
    • File Security storage
  8. Open the GCP Console in another tab.
  9. Set the stack parameters:
    1. In Google Cloud Shell, create your deployment folder.
    2. Upload the stack template zip file to your cloud environment.
    3. Extract the files from the zip file.
    4. Change the directory to the deployment folder.
    5. If you want to have File Security Storage automatically quarantine, promote and fail scanned file, set the following parameters in the main.tffile.
    6. Run the Terraform deployment script.
      When the script successfully deploys the stack, the subscription appears under Google Cloud on the Inventory page.
  10. Click Done.

Next steps

Now you need to enable the scanner for the containers in each region that you enabled in your template