These statistics certainly echo the reality of IT security in business. Employees, either maliciously or accidentally cause many of the security problems that businesses face on a day-in, day-out basis. User education and proper training can offset this risk over time.
I agree with the message of this article and specifically endorse the truth that real, effective cyber security begins with your employees. That said, the fact cannot be overlooked that good technology is being purchased, but is not being properly or consistently used. Add to this the fact that technologies are being purchased as point solutions for compliance requirements, but not leveraged across all the other valuable data sets within the organization.
Though I love job security as much as the next person, these statistics are not a good thing. We need more IT security professionals in the market and coming down the pipeline to meet the threats we are facing head on. I agree that young, less experienced talent needs to be given a chance and grown within business to succeed. I have worked with team members new to security who in a short period of time met and then exceeded my expectations.
These 5 tips by the team at Dark Reading are sound and fundamental and well worth the read as a refresher or a starting point for keeping employees safe.