Cybersecurity breaches of magnitude and consequences that used to be unthinkable a decade ago are happening with alarming regularity today. But while breaches have exploded in scope, the basic weaknesses that allow them to happen remain much the same and can be summed up in five categories — weak user provisioning, lack of employee awareness, a lag in patch management, ineffective system configuration and irregular penetration testing. These are the high-level findings from a security threat report released by Protiviti this week, which offers an in-depth analyses of vulnerability scans and tests of IT systems and infrastructure that Protiviti performed at more than 500 organizations over the past nine years. The anonymized data reveals trends in vulnerabilities, exposures and security posture by industry and company size. The report analyzes these findings in depth and provides a road map for organizations to improve their security posture. A complimentary download is available at www.protiviti.com/threatreport. See the infographic below for key findings at a glance.