Data Protection
While an executive or board member has every right to ask about a company’s cybersecurity posture, the problem is that CIOs generally do not have the metrics necessary to answer the most cutting inquiries, namely: “Are we spending enough on cybersecurity?” or “Do we have a reasonable cybersecurity program in place?”