Theory Vs Practice: Getting The Most Out Of Infosec

Theory and practice are two very different things.  In fact, I would argue that they are two different philosophies, or mindsets, that often guide how people approach information security.  But which one is more effective?  I discuss this topic in my latest DarkReading piece: http://www.darkreading.com/analytics/theory-vs-practice-getting-the-most-out-of-infosec/a/d-id/1326564?