View profile

Level Up - Issue #49

Security is no longer the concern of the CISO and their team - it's the concern of everyone involved

Level Up

July 19 · Issue #49 · View online
Level Up delivers a curated newsletter for leaders in tech. A project by Ideal for busy people such as Tech Leads, Engineering Managers, VPs of Engineering, CTOs and more.

Security is no longer the concern of the CISO and their team - it’s the concern of everyone involved in building tech. Everyone from product, operations and the techies involved. You may have heard about the twitter security breach this week resulting in an estimated $100K payout through a bitcoin scheme. This scheme involved posting on many high profile accounts such as Elon Musk, Bill Gates, and Barack Obama. It’s so high profile that the FBI are now involved.
Although an official post-mortem has yet to be officially released, there are notes of social engineering to gain access to company slack and then escalation of privilege through plain text credentials found in slack to get access to an admin panel with apparently unrestricted access.
This is a timely warning for all technical leaders to revisit your own security processes. Like software quality, “shifting left” on security is more effective than “tacking it on the end.” In today’s word of increasing organisational, product and software complexity, attacks are increasingly sophisticated but it often starts with a very simple step, often involving humans 👨‍💼👩‍🔧. This is why you cannot rely on a simple solutions and single causes.
I hope you enjoy this week’s content. If you find it useful, please forward to someone else and send me feedback. Stay safe and healthy 🙏
Level up your leadership skills at the Tech Lead Academy 🎉. Currently on offer:

Twitter's fail whale is suitable given their major secuirty failure this week.
Twitter's fail whale is suitable given their major secuirty failure this week.
An open-source product for chatbots (Sponsored)
CSML 🤖 Easy Code for Complex Chatbots!

Cut complex chatbot development lifecycle to mere hours instead of weeks. CSML is an easy-to-learn, scalable and full-featured open-source programming language for expert chatbots. Is your organization developing chatbots now?

Looking for a Technical Leadership role? (Sponsored)
🚀 Verity is hiring a Head of Engineering!

Verity has assembled a strong, interdisciplinary team of engineers with a track record of delivering cutting-edge autonomous indoor drone systems. Will you help take it to the next level?

Check out the job ad for more information
Maintaining Your State
When your coworker does great work, tell their manager
Don't Create Chaos
How to fix micromanagement
Build your own personal leadership manifesto.
The 11 Nasty Habits of a Boss From Hell
Your Most Precious Resource
Ex-Googler's Startup Comes Out of Stealth With Beautifully Simple, Clever Robot Design
OpenAI's GPT-3 may be the biggest thing since bitcoin
Tests that help you find defects faster
The Lock-In You Don’t See
Macro just raised $4.3M to make your never-ending Zoom calls more useful
Organisation & Processes
Tech Sector Job Interviews Assess Anxiety, Not Software Skills
5 Lessons From My Experience Writing OKRs
Book Review: Project to Product, by Mik Kersten
Almanac (Open Source Templates, Guides, etc)
Interesting tweets
A great starting list with more in the 🧵. Is there a name for this common bias?
Jennifer Kim
People Ops/Org practices that sound good in theory but terrible in practice:

- no titles
- no managers
- unlimited PTO

what else?
For me this is more about understanding principles rather than specific tools.
I used to worry about aging out of tech, but more and more I believe there are fundamental properties of complex, distributed system. Different technologies simply move us around within a tradeoff space.
This is a really powerful 🧵 showing what the power of candid feedback (ala Radical Candor) can help people grow. It’s also an important example this is only possible with psychological safety
Dan Rose
The most difficult / pivotal moment in my career occured shortly after Sheryl joined FB in 2008. She saw my potential and wanted to give me more responsibility for the business, but decided first to do a 360 performance review. The feedback from my team and peers was devastating.
And one light hearted tweet 😅
Wendy Johansson
Someone's Freudian slip when designing a people manager survey 😂
Thanks for making it this far! 🤗
If you enjoyed this newsletter, please send me feedback and share with others!
If you’re interested in growing and supporting technical leaders in your company, get in touch about my “Tech Lead Skills for Developers” course or check out the Tech Lead Academy online course on “Time Management for Technical Leaders” and “Fundamentals of Systems Thinking”.
Did you enjoy this issue?
If you don't want these updates anymore, please unsubscribe here.
If you were forwarded this newsletter and you like it, you can subscribe here.
Powered by Revue
Patrick Kua, Postfach 58 04 40, 10314, Berlin, Germany