I built a GCP-based secure file upload system to practice cloud security and operations. Implemented automated file handling with: Public → Secure Bucket Workflow: Files uploaded to a public bucket are automatically moved to a secured bucket via Cloud Functions. Encryption: Applied Customer-Supplied Encryption Keys (CSEK) to protect sensitive data at rest. Access Control & IAM: Configured fine-grained IAM roles to enforce least privilege and prevent unauthorized access. Logging & Monitoring: Enabled Cloud Logging and log-based alerting to detect unauthorized file access, creation, and deletion attempts. Alerting: Demonstrated real-time alerts for security violations and access attempts.