I went from an environment where I had built and controlled everything going back 10 years, to an Enterprise where I have a tiny slice of direct control, but Security purview over everything. This shit is fucking hard beyond anything I anticipated, and none of it is technical.
Everything I learned and became working in a small/medium org directly relates to the Enterprise on a technical level. In fact, I have lots of tiny insights. If you’re concerned about skills, have absolutely no shame or reticence about the size of your employer. Same battlefield
@SwiftOnSecurity Me, at a 2-person ops team: "I don't have time to fix all my problems, triage time" Me, as one of 5000 ops people: "So you realize that until *you* fix *your* tooling, deploys take 3 weeks now and if you won't accept my CL to fix it, you actually have to fix it".
@SwiftOnSecurity welcome to Enterprise technology all engineering is social engineering convinced humanity could travel faster than light if we decided to
@SwiftOnSecurity I gave up being the head of technology to take on head of security, compliance and architecture....... Give me my IT job back..please
@SwiftOnSecurity I feel your struggles. I used to have freedom to control pretty much everything. Now its all polices/procedures and dealing with compliance.
@SwiftOnSecurity Good luck! My first job like that was a real eye opener. Spent a lot of time explaining abd doing the political dance, eventually I went into consulting as I feel large orgs ultimately listen to consultants over their internal folks more (not that it is right).
@SwiftOnSecurity Having a hard time with transitions? Try these - survive 7 M&A actions in 7 years. Move from a global org with 1,200 users to a highly geographically concentrated org with 80,000 and then to another global org with under 100 in about a 5 year span. Got a headache yet?
@SwiftOnSecurity I agree so much. It is def a much different situation when it comes to politics, overall business agility on deploying changes to your environment, and something ive realized is you won't accomplish anything without good team relationships in and out of security. 1/
@SwiftOnSecurity But you have the understanding of people, business, and strategy to actually be good at it. Whereas a lot of other people who also have fine technical skills... well, just have fine technical skills. And try to solve things as technical problems that really aren't.
@SwiftOnSecurity With great powers come great responsibilities
@SwiftOnSecurity Security policies are 10% technical and 90% political. 🤔
@SwiftOnSecurity Hah, I spent years in a team in a corner of our business empire getting things running smoothly. Then I got a global role and discovered that it all needed doing again everywhere else..
@SwiftOnSecurity I feel like I could have written this exact statement.
@SwiftOnSecurity We have all been there brother. Ignorance is really bliss lol
@SwiftOnSecurity do you prefer the old control you had, or the wider lens now?
@SwiftOnSecurity I’m fairly certain we need to run this Tweet through CAB on Wednesday. Does it have 7 approvals?
