Misconfigured tools fail to shield your existing attack surface and add vulnerabilities to it. The quality of the tools, the intent of the enterprise, and the discipline of the employees are not the issues. Security staff may not have sufficiently broad or deep training in the security product areas the enterprise focuses on, says Dave Shackleford, lead faculty, IANS. Security professional scarcity is a consistent theme voiced by the nearly 14,000 security professionals that responded to the 2015 (ISC)2 Global Information Security Workforce Study.”]
Source: https://www.csoonline.com/article/3026505/how-to-protect-security-product-investments.html