Some boards have become increasingly knowledgeable about their C-suites' cybersecurity capabilities. But too few can engage in meaningful dialogue with CIOs/CISOs on the specific strategies they're undertaking to reduce cyber risks and why particular approaches rather than others are being employed.