Today’s CISOs are in a tight spot.  Between watershed events such as the SEC Final Disclosure Rules for material security incidents and becoming targets for litigation by regulators, not to mention targets of extortion by bad actors using threats of physical violence, companies are at risk of losing their single-most well-informed voice for cyber risk. These chilling events have CISOs everywhere are looking for new jobs or leaving the industry all together.  Meanwhile, there is a conspicuous and crushing lack of cybersecurity expertise at the highest levels of corporate governance. The next chapter of data protection is transforming Boards into a critical security control and transitioning CISOs to the board room to produce better outcomes for stakeholders.