>Actually, you could, just by ignoring the things you don't see evidence of and focusing on the points that do, and assessing them based on merit. No, you really can't. Just by including the other points in the…
He said in his first tweet that he wants to have a "serious conversation", then goes on to list three grievances: that Amazon has a lot of involvement in Rust leadership, that Amazon "marginalized the core team" (but no…
I wouldn't know. There might be, which is why I've asked you multiple times to explain the issue to me and yet you have neglected to do so.
You've replied yet again without actually stating what your concerns are. Lol "gaslighting". Ok.
>You can either see his history and trust that he wants to get as much done with as little said as possible or say you trust Amazon Or I can trust neither, and expect that both sides act like adults and actually state…
What "concerns"? Again you have stated and quoted nothing other than vague "it's the structure" or allusions to "too much power". What about the structure? What power are you alluding to? What are your concerns,…
>You know what this is about. No, nobody does. You keep making vague statements like this without actually saying anything. >I assume you've read the links in my comment and the tweets Yea, they just link to more of…
I think partly so, yes. I also think in general the security industry is very bad at increasing the level of collective experience, so it sort of just stagnates. Other fields like web development, consulting,…
We recruit primarily for mid-to-senior level roles (5-15 yrs experience), and it's the former. I get a lot of candidates that can recite what XSS is at a high level, but for example struggle to explain the things to…
Eh, it's both. Other departments don't necessarily focus on security (and leetcode is certainly an idiotic way of hiring, IMO). But even in my department (where we explicitly don't use leetcode and do prioritize based…
It would be the last for T-Mobile because it would end T-Mobile. But it wouldn't be the last breach ever. I could give $5 billion to my FAANG right now and I bet we'd still be breached (hell, I'm pretty sure we already…
One of the biggest problems in the security industry is a misconception that security and computer science are the same. They aren't at all. If you're doing low level design of crypto algorithms, you need to know math.…
I don't doubt that T-Mobile could have done more, but it's also frustrating to see this trope that spending more money on security is some type of silver bullet. It's not. I've been in security for over a decade. I…
>Actually, you could, just by ignoring the things you don't see evidence of and focusing on the points that do, and assessing them based on merit. No, you really can't. Just by including the other points in the…
He said in his first tweet that he wants to have a "serious conversation", then goes on to list three grievances: that Amazon has a lot of involvement in Rust leadership, that Amazon "marginalized the core team" (but no…
I wouldn't know. There might be, which is why I've asked you multiple times to explain the issue to me and yet you have neglected to do so.
You've replied yet again without actually stating what your concerns are. Lol "gaslighting". Ok.
>You can either see his history and trust that he wants to get as much done with as little said as possible or say you trust Amazon Or I can trust neither, and expect that both sides act like adults and actually state…
What "concerns"? Again you have stated and quoted nothing other than vague "it's the structure" or allusions to "too much power". What about the structure? What power are you alluding to? What are your concerns,…
>You know what this is about. No, nobody does. You keep making vague statements like this without actually saying anything. >I assume you've read the links in my comment and the tweets Yea, they just link to more of…
I think partly so, yes. I also think in general the security industry is very bad at increasing the level of collective experience, so it sort of just stagnates. Other fields like web development, consulting,…
We recruit primarily for mid-to-senior level roles (5-15 yrs experience), and it's the former. I get a lot of candidates that can recite what XSS is at a high level, but for example struggle to explain the things to…
Eh, it's both. Other departments don't necessarily focus on security (and leetcode is certainly an idiotic way of hiring, IMO). But even in my department (where we explicitly don't use leetcode and do prioritize based…
It would be the last for T-Mobile because it would end T-Mobile. But it wouldn't be the last breach ever. I could give $5 billion to my FAANG right now and I bet we'd still be breached (hell, I'm pretty sure we already…
One of the biggest problems in the security industry is a misconception that security and computer science are the same. They aren't at all. If you're doing low level design of crypto algorithms, you need to know math.…
I don't doubt that T-Mobile could have done more, but it's also frustrating to see this trope that spending more money on security is some type of silver bullet. It's not. I've been in security for over a decade. I…