Should organizations separate their networking technical security from administrative security? I wanted to know your thoughts and experiences with organizations who decide to separate their technical security (routers, firewalls, antivirus)from their administrative security (user account management, change management, physical and logical access control, etc.). Would you recommend a blended approach or do you see these areas as something that can or should be totally separate?