As threats become too close for comfort, cybersecurity can no longer be simply left to the IT team. It’s time for directors to lead the fight back against this growing menace