Security is critical, but
I'm working at my second job in a row where security is critical but nobody can be bothered to read the OWASP Top 10. It's my second job in a row there there's a big steaming pile of PHP and nobody will even try maintaining a separation of data and commands, even when the tools to do that are easier than mashing a giant mess of strings together. It's my second job in a row where critical vulnerabilities flagged in a code review are ignored.
I don't want to be called a "Tech Lead" when this crap exists. I don't want the FBI holding me for questioning when all the data and money is gone.