| From experience in investigating mishaps like that: 1) no maker-checker control, 2) no imposed limits (with forced maker-checkers - more than one checker)($900m with one click???? what the actual ....), 3) lack of training, 4a) pressure to do this NOW NOW NOW NOW (sorry for the caps), 4b) overworked/tired (matching point 6 below), if that person is "stuck" at home with two screaming kids aged 2-6 for the past five months, I feel for them. 5) toxic environnment that did not allow the employee to spend 2 extra mins to think twice before clicking, 6) in these COVID times not having someone next to him/her and/or was too afraid to ping someone to ask "hey dude, just to make sure, am I using MenuOption1 or MenuOption2 for this almost $1b thingie?" (again, inadequate training & toxic env.)(easier to tap someone in the bag and ask them to look at your screen that get on a Lync call, share screen. Absolute controls in place would be limits & maker-checker. And this is the point, when I browse the "jobs" HN, I NEVER see any on audit/controls/GRC.. as if DevOps are the gods of everythinig and auditors are useless and not needed.. sigh I know there are other (better?) websites when it comes to looking for Audit/Sec work, but I feel that things like that should be taken care of in the development cycle, not the post-mortem of a mishap. |
The roles that get posted to HN are almost exclusively development related or development adjacent (such as PM roles).
If you're not looking for those roles, it tends to not be very helpful directly. But if can be useful to look through, identify companies that appear to be doing interesting things, and then looking up their full job board to see _all_ of the roles they're hiring for.