It's not just cybersecurity that's being missed. It's security. So many businesses don't give a second thought to the threats the world now presents.
Most businesses you can walk into with nothing but a receptionist to stop you. What about the back door where all the smokers go? The loading bay?
Are employees wearing staff badges? Do you know everyone personally, or are there strangers walking around your office unaccompanied and unchallenged?
I could go on, there are so many more security threats.
Educating the Board about security risks is more than just IT. They need to sign up to reviewing all threats to the business. Cascade that down through the staff and you build a resilient business.