Security awareness training should be mandatory for every organization