Matproof × Google Cloud Platform
GCP — IAM, Cloud Audit Logs, Security Command Center evidence.
Matproof's GCP integration pulls evidence across projects — IAM bindings and policies, Cloud Audit Logs, Security Command Center findings, Organization Policy constraints, Cloud KMS, storage bucket configuration, VPC firewall rules, and Cloud Identity. Supports multi-project via Organization-level service account.
Evidence Matproof collects from Google Cloud Platform
- IAM bindings, service accounts, workload identity
- Cloud Audit Logs (Admin Activity, Data Access, System Event)
- Security Command Center findings and asset inventory
- Organization Policy constraints
- Cloud KMS key rotation and access
- Storage bucket IAM, encryption, public access
- VPC firewall rules and private Google access
- Cloud Identity / Workspace user and group data
Frameworks supported
SOC 2ISO 27001NIS2DORAGDPRTISAX
Typical use cases
- SOC 2 CC7 + CC8 change monitoring via Cloud Audit Logs
- ISO 27001 A.8.15 logging + A.8.16 monitoring evidence
- DORA Art. 9 cloud security posture
- Automated organization policy compliance reporting
Setup
- 1Create a GCP service account with roles/viewer, roles/iam.securityReviewer at Organization level
- 2Generate and download the JSON key file
- 3Upload to Matproof's GCP integration setup
- 4Organization-level service account discovers all child projects automatically
- 5Evidence arrives within ~10 minutes
Questions on the setup? Contact us — our team can pair with yours on the connection.
See Matproof × Google Cloud Platform in action.
30-minute demo — we connect a sandbox to show evidence flowing for your actual Google Cloud Platform setup.