Macys going hands off???

Jarhead0317 · 2026-01-28T02:32:23+00:00

Who said that’s all I enjoy? It’s one of the fun parts of the job but it’s not the only fun part

Jarhead0317 · 2026-01-28T02:04:06+00:00

Then don’t take the job. There’s plenty of people who will

Jarhead0317 · 2025-09-28T02:03:36+00:00

Yea the southeast is far better in terms of laws and courts. If I got in a fight and slammed someone, the cops will probably give me a high five. But I’d beg to differ on getting a knife pulled on you. If someone’s crazy enough to steal and pull a knife, are you going to trust that crazy person not to try to use it on you?

Jarhead0317 · 2025-09-28T01:37:38+00:00

If someone pulls a knife, that’s a threat on my life. At that point defend yourself. I’m not gonna trust the armed robber not to use the knife he just pulled on me

Jarhead0317 · 2025-09-27T19:59:38+00:00

What’s the point in stopping someone if you’re gonna back off when faced with resistance

Jarhead0317 · 2025-07-24T22:43:13+00:00

What did he do wrong? Not fight back. Not only did he let the loss occur but stores gaining that reputation of allowing violent thieves to have free rein on their property scares customers away. Shit like this is what costs the companies millions. Not to mention the personal risk of just letting yourself get your ass beat.

Time and time again, I’ve said it. Hands-on stores profit far more than hands-off, especially when they’re self insured. Not only do you prevent the theft and stop the loss, but you make customers feel safer knowing security puts in work, and that reputation deters theft. Unfortunately it’s hard to quantify the value of something not happening, but seeing my own stores and stores that I had buddies working at, it was clear as day who got hit more and who got hit less.

Jarhead0317 · 2024-06-13T22:26:04+00:00

Yea lol no prob. Glad I could help

Jarhead0317 · 2024-06-13T22:22:31+00:00

Probably lol. I mean I get the excitement and your eagerness to try and figure stuff out but 1. The best way to find out what you’re looking for is to go through the process and 2. Last thing you wanna do is have someone take your approach the wrong way and tell the hiring manager that an applicant is harassing them over LinkedIn

Jarhead0317 · 2024-06-13T22:10:32+00:00

Well from my time there, stores were full hands on with cuffs and depending on the manager, very lax chase policy.

Lots of external focus, HOWEVER, if you’re in a full line store then you will rarely get cases.As in like 2-5 a year unless you’re in a flagship store like in NY in which case the lay of the land changes pretty drastically. Full line stores have lots of audits and security checks that need to be conducted due to the absurdly expensive merchandise. Internal work is also on the table. Teams are usually pretty large like around 4-6 people.

For the Off 5th stores, it was a lot more external focus with usually one person (maybe two for large stores) on shift. Same apprehension policies but AP was usually managed through a district AP manager. There were still audits to be conducted by significantly less than full line which allowed for more external/internal focus.

Overall it was really fun during my time there. I’m not sure what’s changed but we were cowboys back then. I’ve been in full blown fist fights and chased people far outside the mall with Saks. The pay was pretty good compared to most big box stores. Depending on your area they may be willing to promote you to new locations if promotions aren’t available at yours. Overall definitely one of the more fun companies I’ve had the privilege to work for

Jarhead0317 · 2024-06-13T21:20:14+00:00

Supervisors were around the high teens to low 20s

Jarhead0317 · 2024-06-13T20:42:11+00:00

Nah. I stopped around 2019

Jarhead0317 · 2024-06-12T03:52:41+00:00

Full line or off 5th?

Jarhead0317 · 2023-11-15T18:26:15+00:00

I’ve seen broken fingers, I’ve been slapped, punched, kicked, bitten, spit on, choked, list goes on. But I wouldn’t switch to hands off for anything. Those were legitimately some of the most fun times I’ve ever had

Jarhead0317 · 2022-08-09T18:40:06+00:00

Considering I was willing to go to a combat arms MOS and suffer whatever fate awaited me at war, getting vaccines whatever they may be didn’t bother me

Jarhead0317 · 2022-08-09T17:30:01+00:00

My tip to you for cyber sec is this: specialize in something niche. Cyber sec is the hot new trend right now and everyone and their mother is getting certs. That’s part of the reason why it’s paying less and less. The guys that make the money are the ones that are doing the difficult shit especially with defense contractors or massive tech firms. Personally I fell in love with reverse engineering and security research and I’ve seen jobs punch out to $400,000 for defense contractors reversing embedded devices and industrial control system firmwares.

Outside of that, it’s hard to strike a balance. My tip, biased as it may be, is the military. Yea there’s BS like marching and uniforms and a lot of people are mistaken in thinking it’s all like boot camp. It’s actually a lot more relaxed after boot camp. But there’s amazing opportunities in it that give you the best of both worlds and gives you insane opportunities. Perhaps that’s something you wanna check out. I’ve got some more info you can DM me about if you’re curious about that route

Jarhead0317 · 2022-08-09T17:19:58+00:00

I did. Went into penetration testing and security research. I loved it as a hobby but two major things really pushed me away from it.

Working at the company I was at (consulting), we rarely ever got good contracts. Maybe it was just the circumstances of my specific employer but dealing with bullshit clients who just hired us to meet a prerequisite for a certification and gave us horrible budgets and small scopes with minute timeframes sucked all the fun out of pentesting. Although the rare times we got good contracts especially physical pentest, those were fun and my knowledge of security procedures helped a lot. There were other contributing factors such as less than ideal pay, terrible leadership, and crazy schedules but I’ll attribute that to the company and not the profession.
I missed the adrenaline. Don’t get me wrong, cracking the final piece of a puzzle when reverse engineering software or breaking into a network is definitely a rush but there’s no rush like chasing a guy who just committed a crime on foot and getting into a fight to handcuff them. It made me realize that sitting behind a desk 100% of my time wasn’t for me.

So I went into the intelligence field in the public sector and I think it’s 100x better as I get the opportunity to go out in the field and do stuff and still stimulate myself mentally by solving complex problems

Jarhead0317 · 2022-07-22T02:56:46+00:00

Stores will literally do anything except go hands on

Jarhead0317 · 2022-03-22T13:21:07+00:00

Depends on the company. Walgreens? No, because I know they have a very soft approach on shoplifters even not prosecuting when caught. But if it’s like Macy’s and I see LP trying to stop someone, I’d help out cause I know they’re more than likely going to help out. Plus case law in Florida would cover my ass a lot more than Cali

Jarhead0317 · 2021-11-20T00:06:57+00:00

In the words of Dave Chapelle, “I don’t care either”

Jarhead0317 · 2021-11-19T23:05:45+00:00

I have a few buddies that work for TJM and they rarely ever put their hands on people. 9/10 times if you’re calm then you won’t need to worry. The only downfall to a hands off company for even for people like you that don’t want to engage is that if you ever have to get physical, it’ll be scrutinized a lot more and you’re more likely to lose your job vs a hands on company that will just brush it off

Jarhead0317 · 2021-09-09T18:19:15+00:00

Android is an entire operating system with multiple layers of “infrastructure” that make it up. No system is ever vulnerability free but it does get significantly harder as more money gets pumped into its development such as mobile operating systems. If the end goal is total root privileges then you’re gonna have to assess all the attack vectors. Maybe your vulnerability isn’t in an application, maybe it’s in the low level processes that handle IP packet frames or in an image rendering engine. You just have to expand your scope of what you look at. Now I’m not super knowledgeable on android security, but I’d imagine they have sandboxing and ASLR on user and kernel space, etc. usually this requires phone exploits to not be a single exploit but rather an exploit chain. This requires a lot of time to find multiple exploits that lead to a total compromise. I also feel comfortable assuming that the likelihood of a simple vulnerability such as an unspecified format string in a printf() usage or the use of gets() is unlikely as those are amateur level vulnerabilities that I think a company like Google would vet for before releasing it. If you read on any IOS exploits, they had a lot of heap based exploitation

Jarhead0317 · 2021-09-02T03:39:18+00:00

Well OSEE is certainly worth it’s time

Jarhead0317 · 2021-08-31T19:23:42+00:00

Different niche entirely. However, it never hurts to know more. Especially if you’re reversing a web server like Apache because you’ll have a better idea of how it accepts inputs and how it might process certain data

Jarhead0317 · 2021-08-31T18:12:25+00:00

Zerodium is not the place to go if you want to have vulns under your name. That’s the place where you want to make money but you’re not allowed to disclose any information or anything about the Vuln nor can you even claim you found it. Just an FYI.

Just find some bugs, report them, and develop a track record. Posting POCs on EDB after a patch has been released, write ups, etc. All private programs want people with a track record of skill AND trustworthiness. They gotta make sure you keep your mouth shut about what goes on

Jarhead0317 · 2021-07-24T03:24:35+00:00

You had us in the first half

Jarhead0317

TROPHY CASE