Only a third of British businesses have a financial plan in place in case of a cyber-attack. Research from Lloyds Bank reveals only half of companies contemplate the risks of a cyber-attack at board level.
To speak meaningfully and to be taken seriously by policy makers about issues like ransomware will require us not just to learn the language of the boardroom but the language of society at large, and of government.
Senior leadership should pursue stronger business outcomes. Theresa Grafenstine says that becomes a much smoother proposition when at least one board member - ideally several - have expertise in governance of technology.
In Case you missed it: Dodgy Google play apps again; Linkedin hit; NHS database breach; GPS spoofing US navy?; board training lacking
The next generation security leaders need to understand how the business works at all levels, but if they can do this, they may become invaluable partners in business.
A new report by the Institute of Directors (IoD) says that business leaders are still putting cyber-security on the back burner.
Survey from consulting firm shows there is still much work to do to identify and protect the 'crown jewels' of mission critical data.