A study by the Ponemon Institute and Security Innovation found a significant gap between executives and practitioners. Less than a third of technicians (27%) and staff (33%) buy into that perception, the study says. The disconnect in perceptions means organizations may not always get the best bang for their security buck. The software layer, by far, has the most security vulnerabilities — more than the network layer, more than operating system layer, the company’s CEO says. “You’ve got management not really having a clue of what’s going on with software development,” he adds.”]