How many VMs were you running? How many regions and what level of geographic redundancy were you offering your org? Were you serving any type of organization that had regulatory compliance/audit requirements (FDA, HIPAA, PCI, DoD, SOX, etc)?
Idk thousands? we were a hosting provider lol. Don’t want to dox myself. Not sure how regions come into it, I mean if you can write shell and some orchistration language you’re golden for anything.
We had some PCI stuff, I relapsed smoking because of getting through it haha. We were also halfway through getting the Australian government PII/gov contract thing when I left.
Most people suck at passing audit compliance because they try to box tick rather than explain how their tailored systems meet and exceed the requirements.
I mean if you can write shell and some orchistration language you’re golden for anything.
This is part of what I meant by labor costs increasing with alternate solutions. As I’m sure you’re aware lots of folks in our field cannot write shell script to save their lives. You’re a higher skill engineer than many orgs that were running VMware. This isn’t a knock on VMware folks. PowerCLI can do lots of things especially in the hands of a skilled engineer, but a good number of folks never make it out of the vSphere client to do their work and complete their tasks. These folks are cheaper to employ because they can still accomplish the task by using the VMware tools that would otherwise require a bespoke solution written by the engineer.
We had some PCI stuff, I relapsed smoking because of getting through it haha. We were also halfway through getting the Australian government PII/gov contract thing when I left.
I hear ya! It can be pretty brutal, especially if you have an honest and knowledgeable QSA.
Most people suck at passing audit compliance because they try to box tick rather than explain how their tailored systems meet and exceed the requirements.
There are also those orgs that shop for a weak QSA, and pay the price later if the resulting audit is too weak. I agree with you that chasing a checked box isn’t the best approach especially if you’ve got a good solution and can document compensating controls.
As I’m sure you’re aware lots of folks in our field cannot write shell script to save their lives.
Basic scripting was a requirement for being a sysadmin. If you can’t script you can’t sysadmin, you can maybe be the IT person but idk it’s a skill that takes a year to learn well. Shell is a very restricted language. This was 15 years ago, maybe things have changed. I know some people run around with microsoft certs and cisco certs pretending they are qualified to do more than resell (for free lol) products but companies shouldn’t hire those people.
At least when I worked in the field a basically competant linux sysadmin got paid around 40k usd a year. It was not highly paid work, almost every dork and any programmer who was willing to sit and read “the art and practice of system administration” could do it. You need one whizz on your team and a few technicians to carry out their vision.
I was not a programmer or engineer, just a sysadmin.
We used to use KVM and qemu. There was no serious overhead maintaining them.
How many VMs were you running? How many regions and what level of geographic redundancy were you offering your org? Were you serving any type of organization that had regulatory compliance/audit requirements (FDA, HIPAA, PCI, DoD, SOX, etc)?
Idk thousands? we were a hosting provider lol. Don’t want to dox myself. Not sure how regions come into it, I mean if you can write shell and some orchistration language you’re golden for anything.
We had some PCI stuff, I relapsed smoking because of getting through it haha. We were also halfway through getting the Australian government PII/gov contract thing when I left.
Most people suck at passing audit compliance because they try to box tick rather than explain how their tailored systems meet and exceed the requirements.
This is part of what I meant by labor costs increasing with alternate solutions. As I’m sure you’re aware lots of folks in our field cannot write shell script to save their lives. You’re a higher skill engineer than many orgs that were running VMware. This isn’t a knock on VMware folks. PowerCLI can do lots of things especially in the hands of a skilled engineer, but a good number of folks never make it out of the vSphere client to do their work and complete their tasks. These folks are cheaper to employ because they can still accomplish the task by using the VMware tools that would otherwise require a bespoke solution written by the engineer.
I hear ya! It can be pretty brutal, especially if you have an honest and knowledgeable QSA.
There are also those orgs that shop for a weak QSA, and pay the price later if the resulting audit is too weak. I agree with you that chasing a checked box isn’t the best approach especially if you’ve got a good solution and can document compensating controls.
Basic scripting was a requirement for being a sysadmin. If you can’t script you can’t sysadmin, you can maybe be the IT person but idk it’s a skill that takes a year to learn well. Shell is a very restricted language. This was 15 years ago, maybe things have changed. I know some people run around with microsoft certs and cisco certs pretending they are qualified to do more than resell (for free lol) products but companies shouldn’t hire those people.
At least when I worked in the field a basically competant linux sysadmin got paid around 40k usd a year. It was not highly paid work, almost every dork and any programmer who was willing to sit and read “the art and practice of system administration” could do it. You need one whizz on your team and a few technicians to carry out their vision.
I was not a programmer or engineer, just a sysadmin.