[newuser94303]

I have used both. GCP is designed to cover all the edge conditions on security. AWS can do that but it is much easier to shoot yourself in the foot with AWS security. That is why you get all the stories about people leaving their S3 buckets open.

[idunno246]

my experience is the opposite. there's a lot of really insecure defaults in gcp, some of which are really hard to override - gcp makes it easier when the default service account that every is ridiculously overpermissioned, and for the longest time you couldnt change the service account in cloudfunctions or app engine, i forget which.

The reason you hear about s3 buckets and not gcs buckets is because usage of s3 is way higher and way older.