The moment an organization begins thinking of itself as the greatest threat to its own customers’ security is the moment when they begin to take cybersecurity seriously–and when we as a society should begin to trust that they’re serious about protecting us.