I was going to make the following point to the parent comment then read this reply and realized the situation is even worse:
1. (According to parent comment) 2FA can be disabled without 2FA
2. Having 2FA makes you look studious/thorough/decisive
Presumably the tech support is indeed told to pay attention to 2FA.
Presumably the entire management/instruction chain there isn't aware of the fact it can be turned off without 2FA confirmation, which effectively neuters it.
I was going to make the following point to the parent comment then read this reply and realized the situation is even worse:
1. (According to parent comment) 2FA can be disabled without 2FA
2. Having 2FA makes you look studious/thorough/decisive
Presumably the tech support is indeed told to pay attention to 2FA.
Presumably the entire management/instruction chain there isn't aware of the fact it can be turned off without 2FA confirmation, which effectively neuters it.
So you have the worst of all the worlds. Niiice.