Pros
Strong Technical Foundation: Historically, the security organization was built on the backs of top-tier talent and robust, scalable frameworks. Initial Culture: The "Connect and Unleash" values once provided a collaborative environment that attracted high performers
Cons
Talent Brain Drain: There has been a systematic departure of the organization's most experienced professionals. Leadership has created an environment where subject matter experts are sidelined, targeted, or driven out, leaving a significant gap in technical capability. Management via Retaliation: The culture has shifted toward micromanagement and punitive measures. Utilizing official feedback channels or the open-door policy often leads to retaliation, including unwarranted Performance Improvement Plans (PIPs) and attacks on professional credibility. Ineffective Leadership: Current leadership lacks the necessary technical depth and management experience to lead a complex security function. Decisions are frequently made without a basis in data or reality, resulting in unrealistic deadlines and a demoralized staff. Ethics and Conflicts of Interest: Leadership in Security has demonstrated a willingness to prioritize personal gain or convenience over corporate integrity, creating significant liability and security risks for the firm. Style Over Substance: There is an overwhelming focus on "telling stories" and creating aesthetic PowerPoint presentations over delivering foundational security results. This focus on marketing skills wastes technical resources and results in subpar work products. Operational Disarray: Communication within Global Information Security (GIS) has severely deteriorated, creating silos where teams are kept in the dark about broader company objectives. Established, efficient workflows have been dismantled and replaced with disorganized, manual processes.
