Managing security teams is different in a lot of ways than other teams, but it's totally possible to structure and support them to better handle the pressures we're put under. Anyway, I wrote some of them down since I keep getting asked:
https://venturebeat.com/security/psychological-safety-is-key-to-managing-security-teams/
Golang HTMX Vite starter
https://github.com/gopherine/go-htmx-tailwind-vite-starter
Discussions: https://discu.eu/q/https://github.com/gopherine/go-htmx-tailwind-vite-starter
The starter uses, tailwind, htmx and golang. We are also using pinesui by devdojo which is built on top of alpinejs and tailwind - gopherine/go-htmx-tailwind-vite-starter
I love my country for reasons that are mine, but I have to admit
- that doesn't mean it's leaders should not be criticized when they f*k up
- others don't like it for their own reasons, and that's perfectly ok.
Like any idea, patriotism or it's contrary can be distorted. I think the line for me, goes when someone becomes a militant.
Militantism of any sort means sentiments take precedence over critical thinking. I remember studies showing political militants (of any tendancy) begin to use the part of the brain that is linked to sentiment over the logical one during debates.
When you stop thinking, you become , as you said, "stupid", and dangerous.
@malwaretech patriotism took bad press as it's now associated with other "ism"s like nationalism, fascism, etc.
I don't believe it has to be that way. Being attached to a place, its history and culture and thinking it's worth protecting should not be controversial.
Just ask yourself, of all the countries you've lived in, is there one that you're proud of the values it brings,and if it is under attack, you'd feel the urge to help and protect ?
If yes then you're a patriot of this country and there is nothing wrong with that.
@anton_chuvakin I proposed the same idea, called it the "SIEM of siems" last year to my management : use the own vendor siem where possible , and connect the alerts only to a vendor neutral SIEM that would also take logs from other Saad services. Build a mechanism to correlate the datas from where they are instead of pushing everything in one place.
I was arguing the following :
1 each vendor is in general in the best position and has the most intelligence on their domains security : AWS for AWS, google for Google, etc.
2 in general, keeping most logs within each vendor perimeter is cheaper for instance azure ad logs for sentinel are mostly free. We also avoid volume transfers and a lot of points in the data chain that can break.
3 we end up with an architecture that is scalable and opened to new technologies and products entering the company over the years.
It's not easy and needs a lot of discipline, but I think this would give the most value to small security teams eventually.
But... It requires complex thinking and up management that is able to look years from now. The initial investment in engineering and infrastructure is pricey and lowers over time. Eventually I was not able to convince my upper management.
LeaKissner
Golang Weekly