“Many companies are not doing their part to educate their personnel on how to make appropriate security-focused or risk-based behavioral decisions. This creates a gap in the first line of attack -– their people.”

David Monahan, research director, security and risk management at EMA, as quoted by CSO