I haven’t found a company that enforces windows of everyone. Seems ridiculous. I would sign the contract then simply require a Mac because I don’t know how to use Windows. IT be dammed.
Smaller companies, maybe. But bigger companies will have a ‘Security and Compliance’ department which will force everyone to use a company-supported platform. It goes beyond OS too. Unapproved apps, even if you are allowed to install them, may not connect to company resources.
Managing centralized security and device management correctly on multiple OSes must be a nightmare. From EDRs to app and device provisioning.
You should do dev work in devcontainers anyway.
Not that it’s an excuse or that I’m happy with that, but I can totally understand why companies do that, and tbh I’d rather see a properly secured than have the option to run Linux.
But I’m biased, because I used to do Red Teamings, and the things I’ve seen…
Devcontainers work for Visual Studio Code when developers are more than happy to click their way through running builds and debugging problems. But, as someone whose workflow is optimized for the command-line, they can fuck off.
for a senior engineer position though? That seems counterproductive. I would expect it of one of the entry levels or non-it but forcing a windows ecosystem on a development or engineering sector screams red flag to me.
A senior engineer obviously needs (and knows how to handle) considerably more access to their workstation and company IT infrastructure than the average employee. On the other hand, I’ve occasionally read complaints from IT security types about engineers being way too eager to install sketchy stuff.
There’s some truth to those complaints. I might need to try out several libraries and tools to see what works best for a certain use case. Is that new one with 15 stars on Github actually safe? Are all of its dependencies? How many developers perform a task like that in a sandbox? How many of those perform a thorough audit before taking it out of the sandbox?
I recently quit a company that does. They hid that until after I accepted and started. I quit out of frustration after a couple weeks of having to listen the the fan all day due to their surveillance and telemetry running. They even disabled sleep mode, so you either had to leave that thing phoning home 24/7, or forcibly shut down every day. 10 minute boot time on a brand new laptop.
Clamshell mode. External monitor, lid closed. My issue was that I could not tell it to sleep when not in use, because their IT disabled sleep to ensure their corporate spyware was always running.
That’s the part I get, but what does having the corporate spyware running 24/7 accomplish? What kind of telemetry would they even get out of that other than ip/location, which isn’t all that interesting.
I have no idea. I didn’t even trust it on my main home network. Connected it to my guest network so it couldn’t scan my home network. Which it tried to do, if course.
It can check if people are typing or using the mouse.
It’s also possible to use the camera of a notebook to track if a person is present and looking at the screen or not.
Any company using that shit is the kind that uses “bums of seats” rather than actual deliverables as a measure of performance, which means they’re also the kind of place were unpaid overtime is the norm and, if in dev, things like projects often ending up in a death march stage - such places are stupidly inneficient and badly managed with a disfunctional work culture.
Avoid such companies like the plague - you’ll be luck if the worst that happens is insane work hours.
I haven’t found a company that enforces windows of everyone. Seems ridiculous. I would sign the contract then simply require a Mac because I don’t know how to use Windows. IT be dammed.
Nah, dogg, nah.
Smaller companies, maybe. But bigger companies will have a ‘Security and Compliance’ department which will force everyone to use a company-supported platform. It goes beyond OS too. Unapproved apps, even if you are allowed to install them, may not connect to company resources.
Managing centralized security and device management correctly on multiple OSes must be a nightmare. From EDRs to app and device provisioning.
You should do dev work in devcontainers anyway.
Not that it’s an excuse or that I’m happy with that, but I can totally understand why companies do that, and tbh I’d rather see a properly secured than have the option to run Linux.
But I’m biased, because I used to do Red Teamings, and the things I’ve seen…
Devcontainers work for Visual Studio Code when developers are more than happy to click their way through running builds and debugging problems. But, as someone whose workflow is optimized for the command-line, they can fuck off.
for a senior engineer position though? That seems counterproductive. I would expect it of one of the entry levels or non-it but forcing a windows ecosystem on a development or engineering sector screams red flag to me.
A senior engineer obviously needs (and knows how to handle) considerably more access to their workstation and company IT infrastructure than the average employee. On the other hand, I’ve occasionally read complaints from IT security types about engineers being way too eager to install sketchy stuff.
There’s some truth to those complaints. I might need to try out several libraries and tools to see what works best for a certain use case. Is that new one with 15 stars on Github actually safe? Are all of its dependencies? How many developers perform a task like that in a sandbox? How many of those perform a thorough audit before taking it out of the sandbox?
Yeah but MacOS has all the same security and group policy controls as windows.
Yeah but managing it fucking sucks.
I recently quit a company that does. They hid that until after I accepted and started. I quit out of frustration after a couple weeks of having to listen the the fan all day due to their surveillance and telemetry running. They even disabled sleep mode, so you either had to leave that thing phoning home 24/7, or forcibly shut down every day. 10 minute boot time on a brand new laptop.
Can you explain this disabling sleep mode thing? What does having the thing awake while it’s closed even accomplish?
Clamshell mode. External monitor, lid closed. My issue was that I could not tell it to sleep when not in use, because their IT disabled sleep to ensure their corporate spyware was always running.
That’s the part I get, but what does having the corporate spyware running 24/7 accomplish? What kind of telemetry would they even get out of that other than ip/location, which isn’t all that interesting.
I have no idea. I didn’t even trust it on my main home network. Connected it to my guest network so it couldn’t scan my home network. Which it tried to do, if course.
It can check if people are typing or using the mouse.
It’s also possible to use the camera of a notebook to track if a person is present and looking at the screen or not.
Any company using that shit is the kind that uses “bums of seats” rather than actual deliverables as a measure of performance, which means they’re also the kind of place were unpaid overtime is the norm and, if in dev, things like projects often ending up in a death march stage - such places are stupidly inneficient and badly managed with a disfunctional work culture.
Avoid such companies like the plague - you’ll be luck if the worst that happens is insane work hours.