(no title)

And for what we need computers to do, there is a necessary, irreducible complexity involved, so there is a limit to how simple things could be even in theory.

But the problem isn't with that necessary complexity per se. It is the lack of knowledge in the responsible upper layers of any organisation about how to deal with that. Computers are complex, as essential as pen and paper (or more) and exhibit highly correlated failure modes (i.e. one faulty update or one trojan takes down all of them, just like a fire burns all your papers). This means that a large amount of resources should be expended to prevent problems from occuring in the first place, because they are usually large-scale and severe. Instead, IT gets the minimum amount of resources to keep up with constant firefighting. Also, risk-prevention is frowned upon, the new shiny or the crap everyone uses always has priority, even if it increases risk. Because nobody ever got fired for buying HAL or something.