Oh sure everyone can be vulnerable to certain cons. Fortunately all spear phishing attacks can be very easily avoided through technical means. I guess those who down voted me must be unfamiliar with the functionality available in current enterprise email systems.

That's great. Not all spearphishing comes in via email though. See Dark Caracal or Magic Hound for relevant history here.

Also fraudulent invoices are another form of spearphishing that you'll still have a pretty hard time against.

I don't know, I'm also on the operations side in a large enterprise and I help with our internal phishing efforts. Pretty sure I'm familiar with the same tools that you are and I vehemently disagree with your assessment.