Generally I would expect a higher degree of security from an agency with a $2bn budget whose primary purpose is the integrity of communications about financial markets than an average person with a credit card.
Certainly you will admit at some size, responsibility and level of funding the organization should take responsibility for protecting itself from hacks. If the Department of Defense got hacked and nuclear secrets were leaked, I certainly hope people would get fired rather than sympathized with.
Twitter offers password based security. What other methods of security were you expecting? The SEC can't make Twitter functionality. We don't even know how they got hacked.
The DOD doesn't use Twitter, a social media platform, as the mechanism for launching nukes... what are you talking about?
Certainly you will admit at some size, responsibility and level of funding the organization should take responsibility for protecting itself from hacks. If the Department of Defense got hacked and nuclear secrets were leaked, I certainly hope people would get fired rather than sympathized with.