A cloud security engineer is troubleshooting a failure in automated backups for a production database. The backup job runs nightly but has failed for the past three nights. The logs show permission denied errors when the backup service attempts to write to the storage bucket. Which action should the engineer take first?
Trap 1: Open a support ticket with the cloud provider for incident response.
This is an escalation step, not the first troubleshooting action.
Trap 2: Restart the backup service and retry the job.
Restarting does not address the permission error.
Trap 3: Rotate the service account keys used for authentication.
Key rotation does not resolve permission assignments.
- A
Open a support ticket with the cloud provider for incident response.
Why wrong: This is an escalation step, not the first troubleshooting action.
- B
Check the IAM roles and bucket ACLs assigned to the service account.
The error indicates a permission issue, so this is the correct first step.
- C
Restart the backup service and retry the job.
Why wrong: Restarting does not address the permission error.
- D
Rotate the service account keys used for authentication.
Why wrong: Key rotation does not resolve permission assignments.