Good article, thanks for posting it. I don't think it can be stressed enough just how important the human element is in regards to network security.

Make sure security is highly visible, even intrusive. In-your-face security is an invitation for people to find workarounds. Take the typical morning routine: First, users log on with passwords to Windows, then the Novell server, then the salesforce application. Once connected, they get constant alerts from your desktop firewall, your spam filter, your antivirus scanner.
The result? Once some users log on, they never log off, even when leaving for the evening, because it's such a pain to repeat the procedure. And many users lower the settings on desktop firewalls and scanners to the weakest level to shut them up.
I can definately relate to this one as the company I work at users sometimes don't log out after hours for one reason or another. Luckily we can monitor them and remotely restart the machines to avoid possibly security holes if necessary.