The list was meant to be broad brush, so there are many essential competencies for which there just wasn't room. One of the major limiting factors in deciding which to include was to focus on those that are applicable to anyone who makes a living as an IT professional in any capacity. Although some studies report that as much as 80% of security breaches are internal, and while I absolutely agree everyone needs to comprehend and understand the fundamentals of security, there are many jobs in which security is but one of many factors that need to be built into a high functioning system.

I believe, as I'm sure do you, that every IT professional has a duty and responsibility to provide a safe and secure computing environment to their customers, and as such I appreciate your input.