A solid defense is built upon multiple layers of technology, policy and practice. But companies that suffer a major network breach have frequently failed on a more fundamental level. Avoid these sins and you will have taken a critical step toward a secure network. Upper management looks at security as a project, typically because of compliance concerns, then loses interest. Overlooking the people using the machines is the biggest risk, experts say. Too many focus on tools for employees that can’t be exploited through engineering tricks.”]
Source: https://www.csoonline.com/article/2123500/the-seven-deadly-sins-of-network-security.html