Cybersecurity risks tolerance

There has been a lot of discussions in the last year about the need to ensure board members are aware of cybersecurity risks and they make appropriate funding decisions to support the risk tolerance of the organization. The readings provided are fundamental but what is the current thing, particularly during the pandemic?

Find a current posting, since 2020,  from a reputable management organization (e.g., Forbes, McKinsey, Harvard Business Review) or consulting companies such as Deloitte or Ernst and Young.

Summarize the discussion in your own words (at least 500 words) and provide the citation.