As cyber threats proliferate and become a bigger part of the public discourse, the management and responsibility of those threats is increasingly moving towards the highest levels of an organization – corporate executives and the board of directors. Yet many of those in the C-Suite do not have a sufficient high-level understanding of the risks facing their organizations.
In fact, 52% of directors ranked IT strategy and risk as the issue for which they need better information and processes, behind only strategic planning.1 On top of that, PwC’s 2014 US State of Cybercrime Survey found that “organizations . . .