|
|
|
|
|
|
by stevewatson301
1303 days ago
|
|
|
There is something to be said about the repeated displays of incompetence though. My own experiences working with WITCH employees have mirrored those of the other comments and that of the article. It is not wrong to criticize the methods that they pursue, nor the fact that they do not wish to learn from their mistakes. Most companies the size of WITCH do not utilize access keys nor add them to source control. While a developer may make a mistake, you would expect there would be guardrails around the development process, either by way of an automated scanner or a more experienced software engineer catching it as part of a code review. The fact that none of this happened is quite concerning, IMO. You could also perhaps say this is a management problem than an employee problem; and while that is true, such distinctions are rarely made. As an example, I'm sure you've had bad experiences with customer support which you simply summarized as "The support rep at Corp X sucks" when talking to other people; whereas the truth might be somewhere closer to "The support rep was out of luck because they didn't have a process to do A, B and C because management didn't think of it." |
|
|
Most companies the size of WITCH do not use barely out of college engineers for rock bottom prices, driving them to deliver, features, features, features at all costs.
Literally all costs. It's a lot simpler to work with AWS if you can just plonk your full access key down everywhere, and even someone just out college can understand it.
Conversely, dealing with AWS Roles/Profiles and permission is a whole separate profession by this point.