Cybersecurity threats are increasing in frequency and sophistication, and the consequences of a breach are becoming dire. These attacks can harm stakeholders, ruin an organization's finances, and even become an issue of national security. In 2016, a report found that the primary cause of security breaches across organizations and industries was not the expected phishing campaigns, or even sophisticated hacking attacks, but simply human error. The WannaCryptor worm that infected Britain’s National Health Service was not a technical error, but a human error. That’s why cybersecurity education is so critically important. Organizations need to have consistent, frequent, and relevant conversations about cybersecurity with their management and workers alike. Training sessions should be short but often to sustain focus throughout the session, and in the day-to-day. Additionally, communication between the IT department and the rest of the organization should be frequent and transparent. This way, departments will foster a sense of cooperation instead of begrudged compliance. Simulation exercises can also be an effective way to help workers practice the principles they have been taught, and serve as a benchmark for how training has succeeded while indicating what work might still need to be done.