How did the idea born?

My vision of the Global IT Smart Security Community (GITSSC) is born from the accumulated unspoken not-shared perspective of views, missed chances to work on a task that is of interest or part of the learning curve, new innovative ideas playing in your head within minutes and waiting for a chance to execute them in reality, repeated responses such as:

​

​

1. Insufficient funds,
    

2. Hiring freeze (always at the wrong timing, when it’s the actual need to hire),
    

3. Unable/cannot increase the salary range to attract required needed skillset,
    

4. Unable to retain high-performing employees with a strong proven track records of successful execution & delivering results,
    

5. Re-visit in the next financial year,
    

6. Priotrizing other activities which are important as well, however when it comes to security with several kinds of cyber attacks happening everyday, it will be a push-back or schedule to a much later time,
    

7. Lack of resources & skillset to implement the security process/procedure/policies timely,
    

8. Not taking ownership, responsibility and accountability,
    

9. Lack of importance & the respect for security in SDLC and repeatedly provide excuses why unable to configure/implement now and how it delays the release - informing the security process is delaying the entire release due to the constant on & forth requesting for approval and the never-ending security configuration changes to ensure compliance is met,
    

10. Communication breakdown between application, systems, network, server teams with security team and repeatedly providing the same response that they lack of resources & time - delays needed required security process/policy/practice implementation and creating loopholes/backdoors,
     

11. Assigning security tasks to individuals who lack the appropriate expertise while expecting them to be completed correctly - yes they can be learned, however for new timers, will require guidance and support to make it work,
     

12. Human behavioral issues that ultimately delays, drags, push-pack, postpone, unwillingness to help that will lead an organization to be hacked as security process/procedure/policies were not implemented timely,
    ​​

13. pent-up frustration, sadness, guiltiness (being true to one's conscience) - lead to resignation,
     

14. stories about the management’s and the organization inability to envision and implement effective processes that enable smooth operations, increase productivity, and reduce employees & teams burnout,
     

15. an excessive accumulation of technology solutions, applications, and security tools has resulted in significant overlap between vendors, making it unclear which products are truly relevant or offer unique value and still under development to meet the current heavy demands of security,
     

16. accumulation of foreign workers with English langauge barrier in terms of reading, writing, speaking and listening which also delays the implementation of process/procedures/policies even further in order to ensure everyone understands and obtain the clarity of what’s required to be done,
     

17. and again, the reason for them is due to lack of resources & skillset and there’s a flood of them and yet still not productive and employees are burnout and all the well-thought processes/policies are not implemented and this leads to organizations missing out on it, (Fear Of Missing Out (FOMO) applies now to organizations, LOL!)
     

18. rejection/constraints/challenges/delays/government's favoritism/government's biasness/government's
    old-school way of working makes it ridiculosuly extremely hard & painful to obtain a Work Visa or PR in other countries which are Non-English speaking as they highly tend to priotrize candidates who can speak their Native Mother Tongue which further significantly reduce the talents from relocating internationally and
    providing their expertise in ensuring IT & Cybersecurity is indeed regarded seriously to ensure they comply to the industrial standards/regulatory/laws/compliance/security frameworks while establishing bilateral government relationships for a secure digital world, green & blue economy,
     

19. there is a lack of understanding of the current cyber-threat landscape at the national and local levels which has contributed to significant visa delays and an overreliance on high-scoring candidates. Despite this, the system still struggles to create a fair, balanced approval system. And importantly, high points do not necessarily guarantee candidates with the necessary expertise & also do not ensure the level of quality or capability needed,
     

20. with skilled talents wasting their time away with no real purpose, meaning, value, worthiness of their personal and professional life and merely barely living in this world with dreams and hopes unfufilled and vanish from the world into bones and dust.

 

​

Well, the above is defintely not a summary but rather words of our unspoken feelings and emotions as we quietly observe everything and master the skill to let go. I am sorry for rubbing the salt on your wound and thanks for your time in reading through all. 

​​
​

​If by any small chance, this online portal actually resonates to people out there in the world, let’s come together and create this community. Let’s create the changes that NEED to be executed. Let’s make it work and help the world grow.

 

After all, let’s be honest, wherever we go, whichever website, application, links, etc we access & whenever on the internet, we want to know we are being protected.

 

 

 

​

​