I am looking at rolling out support case access to multiple users in a project and have a question about social engineering within Google technical cases, does anyone have insight on what steps Google takes to prevent social engineering via the support/cases system, ie someone attempting to escalate their own privileges within a GCP project.
Might be overthinking things a little bit, but other cloud providers (AWS) make explicit statements that they will not perform account administrative tasks on a users behalf via support, but i don’t see a similar claim from Google.
