The answer is that companies are unwilling to allocate sufficient budget to infrastructure. So anyone competent leaves either because either there is better pay elsewhere, or they don’t want to be held responsible for the shoestring shitshow that companies are willing to pay for.
Which is sort of the reason crowdstrike is so popular in the first place. Technically inept leaders want to check a “secure” box in their infrastructure presentation to the board, and certainly don’t want to hire an actual cybersecurity team alongside what they already consider to be an expensive IT team. (Granted they can’t do the mental work of realizing that basically every one of their employee uses a computer every day for hours at a time, and connects to vast networks of computers sitting in datacenters). So to save money, and seeing the legally binding contract, they use crowdstrike.
The answer is that companies are unwilling to allocate sufficient budget to infrastructure. So anyone competent leaves either because either there is better pay elsewhere, or they don’t want to be held responsible for the shoestring shitshow that companies are willing to pay for.
Which is sort of the reason crowdstrike is so popular in the first place. Technically inept leaders want to check a “secure” box in their infrastructure presentation to the board, and certainly don’t want to hire an actual cybersecurity team alongside what they already consider to be an expensive IT team. (Granted they can’t do the mental work of realizing that basically every one of their employee uses a computer every day for hours at a time, and connects to vast networks of computers sitting in datacenters). So to save money, and seeing the legally binding contract, they use crowdstrike.