The document summarizes the results of a Deloitte poll of C-suite executives about cybersecurity. The poll found that most executives expect boards to request more reporting on cybersecurity risk management effectiveness in the next 12 months. It also found that Chief Information Security Officers most commonly report to the CEO or Chief Compliance/Risk Officer. Across industries, confidence in cybersecurity programs was mixed, with most expressing some confidence but few expressing high confidence.