The CEOs are finally realising this, but it's taken them a while.
Thirty years ago, internally, it was pointed out to the management that other major corporate companies had, on their board, a Director for Computer Security
or as it was becoming to be call Business Continuity.
It was suggested that a major IT failure could doom the company.