Before computer networking, a large corporation’s data security concerns were rather straightforward. Don’t let strangers go where they shouldn’t be. Close the most important things in safes. If security is really important, have guards watch over every entrance and exit and do not let anyone leave without being searched.
Now that data is held inside computers that are on networks, that are sometimes connected to the internet or easy to connect to the internet, the security landscape is completely different. It is as if they had their most important data in occasionally-malfunctioning safes placed in the middle of Times Square. And not only that, but some of their safes are placed in dark alleys around New York City where criminals can get working on them without any surveillance or fear of detection.
In such an environment, only an extremely foolish executive would not be very, very worried about data security, or perhaps someone with a degree in music security.
So what should be done? Make the data security department an integral part of your company. You must worry very much about having the right data security department head, and the right people working under them, and the right type of oversight (by a very tech-aware executive, such as someone with a master’s degree or better in computer science or security) that ensures these people are doing their jobs instead watching pretty graphs and browsing reddit all day.
If so far your company has acted like most companies, completely ignorant of new security concerns, you probably need to increase your security staff by a factor of somewhere between two and ten.
If your data gets compromised, you have only yourself to blame.
You can also go with the Russian solution, which is to throw all computers away and work exclusively with paper, since most of your executives aren’t smart enough to understand the importance of documents and data they cannot hold in their hands.