"Why should it just be the IT Managers responsibility?"
it isn't, but the sanctions on the actual responsible managers are not effective; for them to be so, there has to be both company- and a personal- level pain for the business and managers who actually are responsible.
Biting the hand that feeds IT
