This article was originally published on CIO.com

Security breaches always seem to be in the news, but only a handful of organizations are protecting themselves against these threats by actively reducing their cyber-risk exposure. Research by the Ponemon Institute revealed that 63 percent of CISOs don’t regularly report to their organization’s board of directors, and 40 percent don’t report to the boardroom at all. Most enterprises still take a reactive approach to cyber-security—that is, they deal with incidents only as they arise, rather than planning in advance—which makes them a lot more vulnerable to cybercrime and puts their digital transformation strategy at risk.

This article was written by: Marc Wilczek