Over the years, every security incident has had its roots in some level of human factors. It's my belief that each time there is a security breach there needs to be an investigation in more than the technology failings - the human factors need to be looked at as well.

I go into all of this in a lot more detail over on the Starwind blog page https://www.starwindsoftware.com/blog/looking-at-the-human-factors-in-security-breaches