Ransomware Management Career Fork

dafyre

@scottalanmiller said in Cerber virus/ransomware making the rounds...:

Backups feel like a really benign and special case where it feels almost always okay to do it, as long as we can do it without spending money, even if management says no. But partially this is because we can always claim that we didn't do it, no one sees it if they don't look specifically for it and even if systems fail we can decide to ignore the backups at that time. It's almost impossible to get caught and we can make the call to have followed directions or to save the data at a later date when we've "read the situation."

Where I see problems the most is around security and user enforcement. IT often tries to take on HR and management roles, without authority or instruction, because they feel that things should be done a certain way. Like blocking things at work that they don't like (Facebook, games, whatever) or trying to force users to do things a certain way that only IT cares about and management does not support. I've seen this get so extreme that I've seen SEC violations happen because IT felt that "blocking Facebook was just something you do." It turned out to be both horrible for the business (clients threatened to not just drop us, but to sue) and was a rather illegal move (banks can't just drop trader communication channels.)

For your first paragraph, that's an idea I'd get behind, but I would still be looking for other employment if the management said "No, you can't do backups even for free"...

I completely agree with your second paragraph. Blocking things "just because" is a terrible idea. And in my last three IT jobs, security issues caused by users were simply reported up the chain of command and dealt with. Granted, I've worked in IT for at least 2 large businesses (Flexsteel and Rockwell Automation [formerly Allen Bradley]), and one college.... So I've always had a clear chain of command and HR department to deal with those types of things.

wirestyle22

@Rob-Dunn said in Cerber virus/ransomware making the rounds...:

@wirestyle22

@wirestyle22 said in Cerber virus/ransomware making the rounds...:

@Rob-Dunn said in Cerber virus/ransomware making the rounds...:

@scottalanmiller said in Cerber virus/ransomware making the rounds...:

@Rob-Dunn said in Cerber virus/ransomware making the rounds...:

I think it's great that there is a discussion about the implications of backing/not backing up data, but I don't see why this conversation has to derail.

Any conversation that grows organically is not derailed. It's important aspects of the topic that were simply not envisioned as the ones that would be important to the conversation at the outset.

...and this is why I don't post here often. Every time I post anything or try to follow a topic here on ML, it devolves into an argument between usually you and someone else who doesn't agree with you. So now, this side convo is occurring which has very little to do with the original topic.

I don't mean offense to you or anyone else here, but I'm being totally honest here - this is exactly why I don't like interacting on ML.

I think that is the case sometimes. Not always though

It has been the case for nearly any topic I've been a part of.

I'm sorry you've had that experience. I'll try to post more on your topics

dafyre

@wirestyle22 said in Cerber virus/ransomware making the rounds...:

@dafyre said in Cerber virus/ransomware making the rounds...:

@scottalanmiller said in Cerber virus/ransomware making the rounds...:
Granted, I've worked in IT for at least 2 large businesses (Flexsteel and Rockwell Automation [formerly Allen Bradley]), and one college.... So I've always had a clear chain of command and HR department to deal with those types of things.

What's that like?

They were both very... disjointed. Each location had its own IT team that followed a "corporate template" for... everything. I enjoyed my work at both places (oddly enough completely different types of work in a lot of ways)... But I prefer a SMB / SME environment... One location, one clear chain of command, and one clear set of instructions to follow....and yes backups were part of that for those who were wondering, lol.

wirestyle22

@dafyre said in Cerber virus/ransomware making the rounds...:

@wirestyle22 said in Cerber virus/ransomware making the rounds...:

@dafyre said in Cerber virus/ransomware making the rounds...:

@scottalanmiller said in Cerber virus/ransomware making the rounds...:
Granted, I've worked in IT for at least 2 large businesses (Flexsteel and Rockwell Automation [formerly Allen Bradley]), and one college.... So I've always had a clear chain of command and HR department to deal with those types of things.

What's that like?

They were both very... disjointed. Each location had its own IT team that followed a "corporate template" for... everything. I enjoyed my work at both places (oddly enough completely different types of work in a lot of ways)... But I prefer a SMB / SME environment... One location, one clear chain of command, and one clear set of instructions to follow....and yes backups were part of that for those who were wondering, lol.

That's not my experience in SMB's but I'm really glad you had that. I currently am just thrown everything under the sun and expected to design and account for things I can't possibly know because there is no communication. It's really...daunting.

dafyre

@wirestyle22 said in Cerber virus/ransomware making the rounds...:

@dafyre said in Cerber virus/ransomware making the rounds...:

@wirestyle22 said in Cerber virus/ransomware making the rounds...:

@dafyre said in Cerber virus/ransomware making the rounds...:

@scottalanmiller said in Cerber virus/ransomware making the rounds...:
Granted, I've worked in IT for at least 2 large businesses (Flexsteel and Rockwell Automation [formerly Allen Bradley]), and one college.... So I've always had a clear chain of command and HR department to deal with those types of things.

What's that like?

They were both very... disjointed. Each location had its own IT team that followed a "corporate template" for... everything. I enjoyed my work at both places (oddly enough completely different types of work in a lot of ways)... But I prefer a SMB / SME environment... One location, one clear chain of command, and one clear set of instructions to follow....and yes backups were part of that for those who were wondering, lol.

That's not my experience in SMB's but I'm really glad you had that. I currently am just thrown everything under the sun and expected to design and account for things I can't possibly know because there is no communication.

But you are a one man shop, right? I was never that. I always was part of a larger team. The IT team at my current job is ~40 people supporting 2k Faculty & Staff and about 7k students... The Sys Admin team I am a part of is 5 people.

coliver

@dafyre said in Cerber virus/ransomware making the rounds...:

@wirestyle22 said in Cerber virus/ransomware making the rounds...:

@dafyre said in Cerber virus/ransomware making the rounds...:

@scottalanmiller said in Cerber virus/ransomware making the rounds...:
Granted, I've worked in IT for at least 2 large businesses (Flexsteel and Rockwell Automation [formerly Allen Bradley]), and one college.... So I've always had a clear chain of command and HR department to deal with those types of things.

What's that like?

They were both very... disjointed. Each location had its own IT team that followed a "corporate template" for... everything. I enjoyed my work at both places (oddly enough completely different types of work in a lot of ways)... But I prefer a SMB / SME environment... One location, one clear chain of command, and one clear set of instructions to follow....and yes backups were part of that for those who were wondering, lol.

Wow... you had a clear chain of commands and not 5 different manager making demands when you were at an SMB? That seems... refreshing.

wirestyle22

@coliver said in Cerber virus/ransomware making the rounds...:

@dafyre said in Cerber virus/ransomware making the rounds...:

@wirestyle22 said in Cerber virus/ransomware making the rounds...:

@dafyre said in Cerber virus/ransomware making the rounds...:

@scottalanmiller said in Cerber virus/ransomware making the rounds...:
Granted, I've worked in IT for at least 2 large businesses (Flexsteel and Rockwell Automation [formerly Allen Bradley]), and one college.... So I've always had a clear chain of command and HR department to deal with those types of things.

What's that like?

They were both very... disjointed. Each location had its own IT team that followed a "corporate template" for... everything. I enjoyed my work at both places (oddly enough completely different types of work in a lot of ways)... But I prefer a SMB / SME environment... One location, one clear chain of command, and one clear set of instructions to follow....and yes backups were part of that for those who were wondering, lol.

Wow... you had a clear chain of commands and not 5 different manager making demands when you were at an SMB? That seems... refreshing.

lol for real. 5 different managers making 5 different demands and they are contradict each other.

dafyre

@coliver said in Cerber virus/ransomware making the rounds...:

@dafyre said in Cerber virus/ransomware making the rounds...:

@wirestyle22 said in Cerber virus/ransomware making the rounds...:

@dafyre said in Cerber virus/ransomware making the rounds...:

@scottalanmiller said in Cerber virus/ransomware making the rounds...:
Granted, I've worked in IT for at least 2 large businesses (Flexsteel and Rockwell Automation [formerly Allen Bradley]), and one college.... So I've always had a clear chain of command and HR department to deal with those types of things.

What's that like?

They were both very... disjointed. Each location had its own IT team that followed a "corporate template" for... everything. I enjoyed my work at both places (oddly enough completely different types of work in a lot of ways)... But I prefer a SMB / SME environment... One location, one clear chain of command, and one clear set of instructions to follow....and yes backups were part of that for those who were wondering, lol.

Wow... you had a clear chain of commands and not 5 different manager making demands when you were at an SMB? That seems... refreshing.

I was the low guy on the totem pole. I was officially an AS/400 operator... but only while my boss was AFK or out to lunch... That left me with a lot of time, and they knew I was good as a PC tech... so they let me do a bit of that too.

wirestyle22

@dafyre said in Cerber virus/ransomware making the rounds...:

@coliver said in Cerber virus/ransomware making the rounds...:

@dafyre said in Cerber virus/ransomware making the rounds...:

@wirestyle22 said in Cerber virus/ransomware making the rounds...:

@dafyre said in Cerber virus/ransomware making the rounds...:

@scottalanmiller said in Cerber virus/ransomware making the rounds...:
Granted, I've worked in IT for at least 2 large businesses (Flexsteel and Rockwell Automation [formerly Allen Bradley]), and one college.... So I've always had a clear chain of command and HR department to deal with those types of things.

What's that like?

They were both very... disjointed. Each location had its own IT team that followed a "corporate template" for... everything. I enjoyed my work at both places (oddly enough completely different types of work in a lot of ways)... But I prefer a SMB / SME environment... One location, one clear chain of command, and one clear set of instructions to follow....and yes backups were part of that for those who were wondering, lol.

Wow... you had a clear chain of commands and not 5 different manager making demands when you were at an SMB? That seems... refreshing.

I was the low guy on the totem pole. I was officially an AS/400 operator... but only while my boss was AFK or out to lunch... That left me with a lot of time, and they knew I was good as a PC tech... so they let me do a bit of that too.

It's not really about the job itself it's more the lack of understanding of what needs to be done to complete the desired goal. I set up a 10,000 sq. ft. building entirely alone and they expected it to be done in a day. There were over 60 workstations that needed to be configured, all of the cabling and I had to build a network closet from scratch (and I mean walls, door and everything--it didn't exist!)

dafyre

@wirestyle22 said in Cerber virus/ransomware making the rounds...:

@dafyre said in Cerber virus/ransomware making the rounds...:

@coliver said in Cerber virus/ransomware making the rounds...:

@dafyre said in Cerber virus/ransomware making the rounds...:

@wirestyle22 said in Cerber virus/ransomware making the rounds...:

@dafyre said in Cerber virus/ransomware making the rounds...:

@scottalanmiller said in Cerber virus/ransomware making the rounds...:
Granted, I've worked in IT for at least 2 large businesses (Flexsteel and Rockwell Automation [formerly Allen Bradley]), and one college.... So I've always had a clear chain of command and HR department to deal with those types of things.

What's that like?

They were both very... disjointed. Each location had its own IT team that followed a "corporate template" for... everything. I enjoyed my work at both places (oddly enough completely different types of work in a lot of ways)... But I prefer a SMB / SME environment... One location, one clear chain of command, and one clear set of instructions to follow....and yes backups were part of that for those who were wondering, lol.

Wow... you had a clear chain of commands and not 5 different manager making demands when you were at an SMB? That seems... refreshing.

I was the low guy on the totem pole. I was officially an AS/400 operator... but only while my boss was AFK or out to lunch... That left me with a lot of time, and they knew I was good as a PC tech... so they let me do a bit of that too.

It's not really about the job itself it's more the lack of understanding of what needs to be done to complete the desired goal. I set up a 10,000 sq. ft. building entirely alone and they expected it to be done in a day. There were over 60 workstations that needed to be configured, all of the cabling and I had to build a network closet from scratch (and I mean walls, door and everything--it didn't exist!)

This is where you look at management and say, "Not happening... but give me $number_of_days and I will see what I can do."

I hate railing against management... but I will only do it when they expect the impossible.

wirestyle22

@dafyre said in Cerber virus/ransomware making the rounds...:

@wirestyle22 said in Cerber virus/ransomware making the rounds...:

@dafyre said in Cerber virus/ransomware making the rounds...:

@coliver said in Cerber virus/ransomware making the rounds...:

@dafyre said in Cerber virus/ransomware making the rounds...:

@wirestyle22 said in Cerber virus/ransomware making the rounds...:

@dafyre said in Cerber virus/ransomware making the rounds...:

@scottalanmiller said in Cerber virus/ransomware making the rounds...:
Granted, I've worked in IT for at least 2 large businesses (Flexsteel and Rockwell Automation [formerly Allen Bradley]), and one college.... So I've always had a clear chain of command and HR department to deal with those types of things.

What's that like?

They were both very... disjointed. Each location had its own IT team that followed a "corporate template" for... everything. I enjoyed my work at both places (oddly enough completely different types of work in a lot of ways)... But I prefer a SMB / SME environment... One location, one clear chain of command, and one clear set of instructions to follow....and yes backups were part of that for those who were wondering, lol.

Wow... you had a clear chain of commands and not 5 different manager making demands when you were at an SMB? That seems... refreshing.

I was the low guy on the totem pole. I was officially an AS/400 operator... but only while my boss was AFK or out to lunch... That left me with a lot of time, and they knew I was good as a PC tech... so they let me do a bit of that too.

It's not really about the job itself it's more the lack of understanding of what needs to be done to complete the desired goal. I set up a 10,000 sq. ft. building entirely alone and they expected it to be done in a day. There were over 60 workstations that needed to be configured, all of the cabling and I had to build a network closet from scratch (and I mean walls, door and everything--it didn't exist!)

This is where you look at management and say, "Not happening... but give me $number_of_days and I will see what I can do."

I hate railing against management... but I will only do it when they expect the impossible.

I have to setup our project, laptops, etc. for trainings and they scheduled a training for 6:00 PM so I figure I'll set everything up at 4:00 PM and then they'll be good. No. The calendar entry said 14 people. I verified this was the correct number with the director of HR. I set everything up. I'm about to leave and HR comes in and says "The assistant executive director said we now have 18". Great. Now I have to stay late because of crappy communication. I set up the laptops i'm about to leave again. "The assistant executive director said we now have 22". I stayed two extra hours due to incompetence. I went in the next day and said if I'm not given notice it isn't going to happen. I don't get paid for any extra hours as I'm salary. I'm also a person who comes in all the time on weekends, stays late and comes in early when its necessary for my job. That's not what this is.

Note: the numbers didnt change right at that moment btw. She just didn't know the count.

They tiptoe around me now.

dafyre

I wouldn't have minded as long as that wasn't a regular occurrence. But as you said, if you are working nights and weekends too, and not getting paid for it, they simply need to get you some help in the door.

JaredBusch

@wirestyle22 said in Cerber virus/ransomware making the rounds...:

I don't get paid for any extra hours as I'm salary. I'm also a person who comes in all the time on weekends, stays late and comes in early when its necessary for my job.

Then you need to renegotiate your contract. you are screwing yourself and giving away money to the company.

Renegotiate or move on. Well, unless you like getting screwed.

DustinB3403

Yeah most positions that are salary are still allotted overytime-pay, just because you're salaried doesn't mean you aren't entitled to get time and a half or double time.

In NY very few positions are truly "non overtime paying"

scottalanmiller

@Rob-Dunn said in Cerber virus/ransomware making the rounds...:

@wirestyle22

@wirestyle22 said in Cerber virus/ransomware making the rounds...:

@Rob-Dunn said in Cerber virus/ransomware making the rounds...:

@scottalanmiller said in Cerber virus/ransomware making the rounds...:

@Rob-Dunn said in Cerber virus/ransomware making the rounds...:

I think it's great that there is a discussion about the implications of backing/not backing up data, but I don't see why this conversation has to derail.

Any conversation that grows organically is not derailed. It's important aspects of the topic that were simply not envisioned as the ones that would be important to the conversation at the outset.

...and this is why I don't post here often. Every time I post anything or try to follow a topic here on ML, it devolves into an argument between usually you and someone else who doesn't agree with you. So now, this side convo is occurring which has very little to do with the original topic.

I don't mean offense to you or anyone else here, but I'm being totally honest here - this is exactly why I don't like interacting on ML.

I think that is the case sometimes. Not always though

It has been the case for nearly every topic I've been a part of.

Same with any discussion, here, another forum, in real life. It's what any good, healthy conversation looks like. It's not devolving, it's improving. If it wasn't for the continuation of the conversation, the conversation have died long ago. Which is better... not conversation, or a healthy one that was less predicted?

coliver

@DustinB3403 said in Cerber virus/ransomware making the rounds...:

Yeah most positions that are salary are still allotted overyime-pay, just because you're salaried doesn't mean you aren't entitled to get time and a half or double time.

In NY very few positions are truly "non overtime paying"

I have never seen a salary position in NY pay overtime.

scottalanmiller

@coliver said in Cerber virus/ransomware making the rounds...:

I have never seen a salary position in NY pay overtime.

You mean that they just didn't pay for full salary. The job has overtime in most cases, the company just doesn't pay the money earned and hopes that they don't get reported. That's most cases.

DustinB3403

@coliver that is because people refuse to claim it.

coliver

@scottalanmiller said in Cerber virus/ransomware making the rounds...:

@coliver said in Cerber virus/ransomware making the rounds...:

I have never seen a salary position in NY pay overtime.

You mean that they just didn't pay for full salary. The job has overtime in most cases, the company just doesn't pay the money earned and hopes that they don't get reported. That's most cases.

Probably this. Although I've been told in a few of cases that overtime was expected and the salary was built to compensate that.

scottalanmiller

@DustinB3403 said in Cerber virus/ransomware making the rounds...:

@coliver that is because people refuse to claim it.

I've seen a lot of that. Especially with IT people.