Management will be able to enhance its oversight and management of the enterprise’s cybersecurity efforts by identifying and assessing factors contributing to the overall cyber risk. Then, evaluating risk management practices that are needed and actions to be taken to achieve the desired result.