In a panel, entitled "Cyber Security -- Where the Industry Is Headed Next Year and Beyond," seven industry leaders said security is sometimes stuck in a continuous loop because professionals continue to make the same mistakes and sometimes have trouble thinking in new ways.
Five examples of bad habits that security pros need to break, according to the panel:
1. Treating IT security as something that's separate from the business
2. Saying "no"
3. Preaching to the choir
4. Confusing security and compliance
5. Failing to reach out to students and young professionals.