Elevate cyber risk management discussions to the executive

Executive engagement in defining the risk strategy and levels of acceptable risk enables more cost effective management of cyber risks that are aligned with business needs. Regular communication between the CEO and those held accountable for managing cyber risks provides awareness of current risks affecting the organization and associated business impact.
Source :
https://www.connectsmart.govt.nz/assets/NCSC-Cyber-security-risk-management-Executive.pdf