Automate cloud infrastructure with workflows that control Google Cloud services.
Set up a monthly workflow to automatically detect and remediate security compliance issues.
Loop through all critical resources and IAM permissions to identify any that require renewal or review.
Use a Cloud Function to send out requests for approval renewal for those resources and permissions identified in the previous step.
Track the responses to the renewal requests, noting which permissions have been renewed.
Automatically remove access for any permissions not renewed within 14 days of the request.