Given the grave potential repercussions of data breaches, the C-suite needs to be aware of how the company is managing its cyber risk. Andrew Tannenbaum, chief cybersecurity counsel at IBM Corporation, spoke with the Cybersecurity Law Report about what to discuss with the C-suite during an evaluation of the company’s cyber risk programs. He also offered strategies for setting responsibility at various levels across the organization and for establishing a common language between internal stakeholders to effectively discuss and mitigate these risks. Tannenbaum will be a panelist at ALM’s cyberSecure conference on December 4 and 5, 2017, at the New York Hilton. A discount code for CSLR subscribers is inside this article. See also "How Cyber Stakeholders Can Speak the Same Language (Part One of Two),” (Jul. 20, 2016); Part Two (Aug. 3, 2016).