The Fool posted:In a full auditorium, more than half the attendees immediately plugged in the yubikeys as they were being handed out Seems like an expected thing to happen when they’re people who gathered for a Microsoft conference Also the MGM stuff is so wildly stupid. I think I’m probably under an NDA even though I’m not directly involved but that contractor posting is the tip of an Lmao iceberg
|
|
# ? Sep 28, 2023 00:50 |
|
|
# ? May 27, 2024 01:04 |
|
tokin opposition posted:after they sent over more info about pay and benefits, I realized I'd have a slight decrease in annual pay but bump in hourly pay, but that's because they do a 35/hr work week. Weird, but I'd be willing to lose out on 1-2k yearly for the ability to gently caress off an hour early tokin opposition take my energy
|
# ? Sep 28, 2023 00:57 |
|
jaegerx posted:Oh no, a customer has my direct email now. drat it, someone somewhere leaked it. I will hunt this person down. “Oh sorry protocol is that I have to do this stuff from the email queue. That’s why I haven’t answered you.” You have to punish them (with plausible deniability) or you’ll only encourage them.
|
# ? Sep 28, 2023 01:24 |
|
BIG FLUFFY DOG posted:“Oh sorry protocol is that I have to do this stuff from the email queue. That’s why I haven’t answered you.” No. Now I need to do some sleuthing and find out how they got it and punish that person.
|
# ? Sep 28, 2023 01:33 |
|
My continuing pet peeve is people who want to connect on linkedin after 1 meeting. Like I'll generally look up someones linkedin before meeting with them but then we have 1 zoom call and all of a sudden I'm supposed to connect with them? No, no that's not how linkedin works.
|
# ? Sep 28, 2023 01:37 |
|
Inner Light posted:I’m not sure what type of structure your employer is. Is it an MSP contracting to states…? But you said you are FTE rather than a contractor. Is it just the state itself and you’re assigned to projects “sold” to internal state teams? Either way I’ve been in a similar spot, chargeability crunch with those employers is real and needs to be guarded against as well as one can as an employee. Your concern seems well placed. I would be escalating with my management but it’s a fine line to draw attention to lower chargeability. Thank you for that. Basically a FTE consultant on a very specific project plus whatever they else they can dig up. I think I'm ok for the most part, just not accustomed to the role. It's definitely not a MSP. I've been there and have the scars to show for it, which is probably the source of my alarm at the situation.
|
# ? Sep 28, 2023 01:43 |
|
i am a moron posted:Also the MGM stuff is so wildly stupid. I think I’m probably under an NDA even though I’m not directly involved but that contractor posting is the tip of an Lmao iceberg Can you be vague about anything? My curiosity is piqued!
|
# ? Sep 28, 2023 03:02 |
|
jaegerx posted:My continuing pet peeve is people who want to connect on linkedin after 1 meeting. Like I'll generally look up someones linkedin before meeting with them but then we have 1 zoom call and all of a sudden I'm supposed to connect with them? I just accept everyone on LinkedIn. Who cares, it's just Myspace for work.
|
# ? Sep 28, 2023 03:07 |
|
tokin opposition posted:after they sent over more info about pay and benefits, I realized I'd have a slight decrease in annual pay but bump in hourly pay, but that's because they do a 35/hr work week. Weird, but I'd be willing to lose out on 1-2k yearly for the ability to gently caress off an hour early this is the part where you ask them for a counter offer to at least match if not exceed your current salary
|
# ? Sep 28, 2023 03:37 |
|
chin up everything sucks posted:
Not sure if you’ve ever driven on an Air Force base before but the cops are generally very bored and they will 100% pull you over for going 5 over. Also if your base has a flying component it’ll be cool to see jets taking off but also seeing an F35 taking off for the 500th time it gets boring. Also also if you’re at one of the depots then uhh plan for awful traffic
|
# ? Sep 28, 2023 03:50 |
|
Hotel Kpro posted:
big fan of needing to get to the far side of post but having to wait 20 minutes because the access road crosses the runway
|
# ? Sep 28, 2023 04:06 |
|
Hoo god I'm tired from the last few days so I'm sorry if this meanders a lot. Has anyone ever just had a guy who's job it is to come in and look at you? And like not do much else? So as team lead I now have to pay close attention to our process and how we're doing it, including talking to nvidia people. I don't deal with the day shift people, but man they're making life difficult for all of us. Each system has a piece of paper that goes with it, that shows basically what processes its been to, which station it should be in, what labwork has been done on it, etc. So today gearing up for the audit sometime later this week, we've got a guy from our contract who's job it seems like is to just kinda come in and look for stuff that's "wrong" like a piece of paper on a baseboard (NOT ESD SAFE ) or a bench missing drills that person doesn't need (I accidentally caught the photos peeking over my supervisor's shoulder to ask a question) and other stuff like that. We have one specific engineer who makes the excel file for the piece of paper that has all the distinguishing information for that unit, it's not *super* hard to replicate but it has some database stuff in the excel file to automatically convert certain numbers to what they'll be when that unit goes for packout. There's this guy on day shift who is also a spreadsheet genie except he has no way to access the referential database stuff to get the automatically converted number so it turns out that a lot of the extra work I've been doing chasing units down to make sure their information is right is caused by this. In the last few days he's been making more of these and apparently yesterday he shared a version that looks radically different from the expected version, so the guy coming in and staring at stuff noticed this and told our manager so now I've been hunting these down. I don't know if I really care that he's doing his own thing but he's making more pointless work for me which is annoying. This was all just to lead up to the experience I got today while I was doing some work, where the Guy Who's Job It Is To Stare just kinda walked in while I was alone, slowly walked around my sextuplet of benches several times and then left and I had to stop myself from laughing every few steps. And then I cracked open a ten thousand dollar GPU right as he walks out the door and found someone managed the impressive feat of crushing a gnat in the pins, so we have to send it back lmfao. Amazing.
|
# ? Sep 28, 2023 05:46 |
|
i am a moron posted:Seems like an expected thing to happen when they’re people who gathered for a Microsoft conference I knew it was something even more stupid/worse.
|
# ? Sep 28, 2023 08:14 |
|
Do you think there is a competence coincidence between the MGM Grand and it having never hosted DEF CON?
|
# ? Sep 28, 2023 10:18 |
|
The Iron Rose posted:this is the part where you ask them for a counter offer to at least match if not exceed your current salary This. If you get an offer you’re the best candidate they have/want. They’re invested in you and if you get punished for negotiating it’s a red flg and you should drop them like a brick. Head over to The negotiation Thread for strategy discussion. One of the most valuable threads on the forums.
|
# ? Sep 28, 2023 11:24 |
|
jaegerx posted:My continuing pet peeve is people who want to connect on linkedin after 1 meeting. Like I'll generally look up someones linkedin before meeting with them but then we have 1 zoom call and all of a sudden I'm supposed to connect with them? I've reserved my LinkedIn for people I've actually worked with and meet in real life at least a few times. Mustache Ride posted:I just accept everyone on LinkedIn. Who cares, it's just Myspace for work. While rare there are some people I do not want to be connected with on LinkedIn. Additionally, recruiters looked your connects and if it's a bunch of randos with no real relationships they'll move onto the next candidate.
|
# ? Sep 28, 2023 12:39 |
|
i am a moron posted:Also the MGM stuff is so wildly stupid. I think I’m probably under an NDA even though I’m not directly involved but that contractor posting is the tip of an Lmao iceberg Is there a post mortem on the MGM hack? How did they get in the first place?
|
# ? Sep 28, 2023 12:40 |
kensei posted:Can you be vague about anything? My curiosity is piqued! It probably wouldn’t be as funny if I typed out everything I’ve heard, but it’s decades of cheap terrible practices culminating in the kind of shitstorm that makes people rethink their lives. Also disjointed and possibly insane IR playbooks. Crosby B. Alfred posted:Is there a post mortem on the MGM hack? How did they get in the first place? I think there is some public info out there about potential reasons. They're publicly traded so I’m sure eventually they’ll put some milquetoast half truth out there
|
|
# ? Sep 28, 2023 14:29 |
|
I worked for a casino briefly and they’re usually not afraid to shell out if it means extra security. Dealers work 40 minutes and get 20 minutes breaks because it makes cheating slightly harder.it’s the only place I ever got a paid lunch hour because that’s the only way they can legally tell me I need to stay on the property my whole shift Cheaping out in a way that makes the entire company implode is really funny lol
|
# ? Sep 28, 2023 14:54 |
Anyone who gets popped this hard by ransomware is either being cheap or negligent in some way. And if you respond to it by wildly flailing around with dumbass responses it can get even worse. And per usual it’s all active directories fault probably
|
|
# ? Sep 28, 2023 15:38 |
|
"Office 2019 will be supported until 2025. Office 2019 will not connect to online services in two weeks. We are large; we contain multitudes." -Microsoft
|
# ? Sep 28, 2023 16:12 |
|
Looks like MS is pushing down copilot to users, which is great. You can only manage it via GPO but the GPO for it is in the 23H2 ver of the ADMX files. I cannot find these to download. Has anyone else? https://www.ghacks.net/2023/09/17/how-to-disable-windows-copilot-in-windows/ Guess I could push a reg entry. GreenNight fucked around with this message at 16:19 on Sep 28, 2023 |
# ? Sep 28, 2023 16:14 |
|
hahaha gently caress yeah OH YEAH just learned that our newest hire... bought IT stuff for himself, so was using our intranet and stuff on a personal-owned machine. kind of on me for not realizing that (I have tried to take over IT stuff since it was messy, we are a small company and we didn't really have anyone dedicated to this) but gently caress yeah this rules wow this is so loving cool that we just let that happen! Only found out because he's quitting.
|
# ? Sep 28, 2023 16:22 |
|
I wfh but hate using the work laptop because it is so slow compared to my home machine. I cleared it with my security team first, but now have a work VM running through Hyper-V and do all my work on that. I logged in with my work account and set Windows to give full control of that VM to the company. I also have Hyper-V set to have all the available security options enabled to hopefully minimize any risk from my personal machine being the host.
|
# ? Sep 28, 2023 16:43 |
|
The problem is that he kinda did none of that with anyone. So now even if I pull accesses who knows what he's got on there. Shouldn't be much because I'm usually good at dealing with accesses but that's still less than ideal...
|
# ? Sep 28, 2023 16:45 |
|
That's all just par for the course for small companies that don't care about IT.
|
# ? Sep 28, 2023 17:01 |
|
i am a moron posted:Anyone who gets popped this hard by ransomware is either being cheap or negligent in some way. And if you respond to it by wildly flailing around with dumbass responses it can get even worse. And per usual it’s all active directories fault probably Probably. Very few companies invest in AD properly. Someone sets it up and it just runs.
|
# ? Sep 28, 2023 17:07 |
|
Internet Explorer posted:That's all just par for the course for small companies that don't care about IT. I agree, but god do I wish it wasn't so, especially since our software has to be airtight because we sell to medical facilities. There's kind of a disconnect here that really annoys me (that I would argue borders on neglicence) But as you said, par for the course. Curious to see where this conversation internally will take me though!
|
# ? Sep 28, 2023 17:24 |
|
Reoxygenation posted:our software has to be airtight because we sell to medical facilities. Having supported medical software before I don't believe you
|
# ? Sep 28, 2023 17:34 |
|
One of our customers used to be the director of security at Caesars. He told us he started this thing where they would only test/do POCs for new security vendors and tools during the first few weeks of August. He only had one company question that time frame, and when he said, "it's when defcon is at the hotel".
|
# ? Sep 28, 2023 17:35 |
|
my place has had several ransomware attacks that they paid off before I got here and if our current security policies are a step up I shutter to think what it was beforeThe Iron Rose posted:this is the part where you ask them for a counter offer to at least match if not exceed your current salary LochNessMonster posted:This. If you get an offer you’re the best candidate they have/want. They’re invested in you and if you get punished for negotiating it’s a red flg and you should drop them like a brick. Thanks for the advice, but this is a nonprofit and all paid is determined by years of experience. I might try to argue for a few more years than strictly show up on my resume (my slight decrease is based on getting 0-1 years listed but I don't actually know how that's determined yet. if they let me I'm happy to put 25 years experience since I started using computers at the age of 3), but I'm more than happy to eat a 1.6% haircut if it gets me outta of this place and with less hours per week.
|
# ? Sep 28, 2023 17:41 |
|
Mustache Ride posted:One of our customers used to be the director of security at Caesars. He told us he started this thing where they would only test/do POCs for new security vendors and tools during the first few weeks of August. He only had one company question that time frame, and when he said, "it's when defcon is at the hotel". If you're a vendor looking to shift complete trash during Defcon then it seems this year, like every year in the past, was a great time to be selling audio gear and video capture devices.
|
# ? Sep 28, 2023 17:49 |
|
The Fool posted:Having supported medical software before I don't believe you I said has to, not that it is
|
# ? Sep 28, 2023 18:06 |
I’m riding a six week stress train right now. Really wish my company wouldn’t have laid people off and initiated one of the quietest, detail-less re orgs I’ve seen in the eight years and nine major reorgs I’ve been a part of. New VP called me and asked if I wanted to lead a team two weeks ago, have heard 0 info since. My manager (who I now know won’t be my manager for long) insists it’s happening, but they’ve started reassigning people and I’ve heard nothing. My hope is I don’t pick up management duties again. I intentionally left a management position earlier this year. I’ve also heard some names of people picking up management duties and I’m really not thrilled if some of them did happen. Will be my seventh manager in just under three years one way or the other I guess. As for the layoffs they really hosed my flow up. I have so much work to do on so many different things the context switching is killing me. I’ve been managing my hours and staying off the booze so I’m not spiraling into an anxiety management problem yet, but I’m starting to remember why I used to work so much. I have so much poo poo piled up that not doing it almost stresses me out more than working more.
|
|
# ? Sep 28, 2023 18:07 |
|
Did the recent death of MCS/ISD not flood the consulting field with a ton work? I'm surprised you aren't busier.
|
# ? Sep 28, 2023 18:13 |
|
BIG FLUFFY DOG posted:I worked for a casino briefly and they’re usually not afraid to shell out if it means extra security. For what it's worth, I've found the casino industry to be notoriously cheap but with weird IBM and Oracle software everywhere. skipdogg posted:Probably. Very few companies invest in AD properly. Someone sets it up and it just runs. It's astonishing to me that the whole corporate world lives through Active Directory. Granted, there are things you are able to do like fancy "red forests" but once they've got your EA or even a bit less I wonder what the hell a real security professional would do at that stage besides turn everything off? And even after that, then what?
|
# ? Sep 28, 2023 18:17 |
My workload covers the gamut of cloud providers and platform engineering now and also DevOps things and other things. Our MS business hasn’t seen any uptick, kind of the opposite really. Also our shittiest partner on a day to day basis. I’ve never heard of or competed with MCS/ISD on any of the many accounts I’ve worked with MS
|
|
# ? Sep 28, 2023 18:20 |
|
Mustache Ride posted:One of our customers used to be the director of security at Caesars. He told us he started this thing where they would only test/do POCs for new security vendors and tools during the first few weeks of August. He only had one company question that time frame, and when he said, "it's when defcon is at the hotel". That's brilliant. Absolutely brilliant.
|
# ? Sep 28, 2023 19:48 |
|
Crosby B. Alfred posted:Additionally, recruiters looked your connects and if it's a bunch of randos with no real relationships they'll move onto the next candidate. Recruiters are morons; they're not looking at your linkedin profile to see if you have the right friends. They wouldnt know what to look for. Without writing a novel - recruiters are the dumbest evolution of sales people. They are selling other people as a product. If they knew anything about people, or products, or sales, they would do something else. The questions they ask you about experience and technical skills and are the same as Clever Hans counting to six - its mouth-noises they've been trained to make & expect certain mouth-noises in response. They will rarely slip kayfabe, but if you get the right one they'll be completely candid and admit they don't know loving poo poo about any of this & they're certainly not googling 'REST API development' to figure it out. And without writing another novel - Linkedin has devolved considerably but having a presence there is still important. Use a corporate headshot as a profile pic, make sure you list all of your roles and titles as far back as you can, otherwise don't touch it.
|
# ? Sep 28, 2023 19:52 |
|
|
# ? May 27, 2024 01:04 |
|
It definitely feels like recruiters are useless, but I often wonder if they'll at least get you right to the interview process with some positions? I've had a few ghost me after I responded to their initial recruitment messages, which is pretty annoying. I've also had 4 or 5 different recruiters reach out to me about the same position for the same company - I refuse to interview due to commute & on-site expectations. No real updates on the job hunt front, I've applied to ~50 jobs over the last week, one having an internal referral. I also reached out to my old UI/UX professor who advised me on my independent study during my Master program and apparently there are some instructor roles I may be a good fit for, so fingers crossed. I've also started applying to hybrid roles in larger metropolitan cities without obscene housing in the midwest (Chicago, Columbus, Minneapolis), even though I don't really want to relocate, but I'll do it for the right job. It seems like IT hiring in general is competitive everywhere. If anybody happens to be on a team that is looking to hire somebody in a BSA/PM/UI+UX type role, please don't hesitate to pm me. I have 6 years experience in software and web development with a heavy emphasis on UI/UX, Requirements Specifications, and Acceptance Criteria. Corb3t fucked around with this message at 20:27 on Sep 28, 2023 |
# ? Sep 28, 2023 20:07 |