Too often, she said, the broader value embedded in today’s cyber policies goes unused. “There’s a myriad of available resources,” Weinraub said, pointing to pre-breach services like forensics, legal counsel, compliance support, tabletop exercises, and access to vetted vendors. “There is so much value in having a cyber policy – not just when the incident happens.”