People and Processes Should be Important than Technology — “A poll of more than 4,000 information security professionals in more than 100 countries, carried out by IDC on behalf of the International Information Systems Security Certification Consortium (ISC)2, found that organisations have traditionally overlooked the role of human behaviour in favour of trusting hardware and software to solve security problems.”