Its so simple...
Most of these breaches are a result of network administrators being any combination of lazy, careless, retarded or ignorant. its not that hard to setup and maintain security policies that work, but most average users bitch and the admins bow to pressure...
until they get raped and pillaged by hackers and have to respond, they'll never grow the balls to tell their users tough shit the policy stays, if its too difficult, maybe you should find a job thats more in tune with your intellectual stature....