The security industry has clearly reached a tipping point. Only by taking a human-centric approach to security can we better understand, manage and mitigate risk to the federal government and our critical infrastructure. The 2017 State of Cybersecurity report includes an in-depth look into how gaining visibility and the ability to understand the context behind user actions can prevent damaging breaches (intentional and unintentional), the grouping of insiders into three types — accidental, compromised and malicious and factors that help provide the intent behind behavior, including security awareness, attention to detail, fatigue, job satisfaction and more.