Former Equifax CEO Richard Smith testified to Congress that the security failure causing the 2017 breach was caused by one person. WannaCry Ransomware had such a disastrous effect around the world because people did not manage their system patching properly. How much time have you personally spent trying to clean a virus or recover a backup because an employee clicked on something they shouldn’t have? The biggest cybersecurity risks companies face lie within people that work there. Your company may have the absolute best protection in place, from NextGen Firewalls to Multi-Factor Authentication to SIEM tools, but these tools often create a false sense of security! An employee could still leave their password on a post-it note or provide server room access to someone who claims to be a Spectrum repair man. Let’s talk through how we can incorporate both the strengths and weaknesses of human nature into company policies around cybersecurity.