Interesting to see such a disconnect. Is it because we are "watering down" what is reported to the board because of executive pressure? Is it because we have not done a good job of connecting cyber risks to broader business risks or an organizations social responsibilities ? or is it something else ?? Or perhaps the business is numb to the issue and is just accepted the sorry state we are in on managing these risks ? Wonder what others think .... https://www.techrepublic.com/article/report-despite-more-cyberthreats-during-covid-19-most-businesses-confident-about-cybersecurity/

Top Answer :