Pay attention to the basics. Hire good people. Train them in security.
You know, all the obvious stuff. Like encrypting data. And keeping a close watch on the data your organization makes public.
“Information security is a mess. … Companies don’t want to spend the time/money on computer security because they don’t think it matters,” said ex-Anonymous hacker “SparkyBlaze,” in an exclusive interview with Cisco’s Jason Lackey.
http://www.informationweek.com/news/security/intrusion-prevention/231600561
All the usual stuff. All we have to do, is do it.