Presently in BQ and GCS end point, JSON key is available to all designers to edit. When in an organization if there are may designers then any body can change the JSON key. From security perspective this will be not be feasible.
Similar to Hadoop Keytab, JSON key file should placed in secure place so that it can be changed with higher privilege only , like admin
Also instead of having key file for each project it should be common across many projects