Moral Hazard

Is moral hazard cybersecurity's biggest problem? When there is the expectation that technology delivery (and their leaders) will reap the rewards of their successes (reduce costs, faster time to market, greater accessibility, additional features etc) whil others will bear the burden of their failures (poor coding practices, lax on-going patching, default configurations etc) that the Chief Information Security Officer then has to pick up.