Hardest thing to find in a new security engineer hire

Inspired by this post on the DevOps sub:

https://old.reddit.com/r/devops/comments/185vros/hardest_thing_to_find_in_a_devops_hire/

Security engineering is very wide and deep. I've experienced colleagues with the title do everything from architecture and automation to incident response with varying degrees of depth and quality. Others I've witnessed avoidant of anything outside of their little bubble or tools, preferring to pass the buck to other teams to execute security activities themselves. Leadership varies between former engineers that have lost their chops and the business executive that knows …

architecture automation cybersecurity devops engineer engineering find hire incident incident response quality response security security engineer security engineering tools