Least Privilege, JIT Access, and Storage Exposure Mitigation: This project was built to explore how IAM misconfigurations and poor access control decisions can create security risks in Google Cloud Platform (GCP). The goal was not just to configure services, but to simulate how cloud environments can become vulnerable through: overprivileged service accounts excessive IAM permissions public storage exposure weak privilege management I then applied security controls to reduce those risks using: least privilege access IAM auditing service account hardening temporary privilege elevation (JIT simulation) storage access remediation This project combines both cloud engineering and cloud security concepts into one practical environment.