I recently presented at the 2nd Annual ISACA Cybersecurity Conference in Houston, TX, held by the Information Systems Audit and Control Association (ISACA), a nonprofit, independent association that advocates for professionals involved in information security, assurance, risk management and governance. Other presenters revealed some new, interesting ways to protect organizations from security threats, and as always, conversations other attendees proved enlightening. This year, they gave me some insight into reasons why people don’t have more effective security systems.