That's not insane but actually quite sensible: it guarantees that lack of IT related skills does not compromise security. If I had to guess, that policy is the result of a risk assessment that did exactly what it was supposed to do.
The bit where it might be seen to have gone wrong is that you personally have not formally been made aware why it is a policy.
The bit where it might be seen to have gone wrong is that you personally have not formally been made aware why it is a policy.