Hardly a week goes by without a report about another cyberattack. With almost every major organization having been victim, including most government organizations, such Target, Sony, NSA, US Office of Personnel Management, why would you expect your organization to be immune? By many projections, the worse is yet to come. Although much progress is being made in improving hardware and software, studies have reported that between 50-70% of all cyberattacks are aided or abetted by insiders (usually unintentionally), so understanding the cybersecurity governance and organizational culture is increasingly important. In this session, we will discuss the managerial, organizational, and strategic aspects of cybersecurity with an emphasis on the protection of the nation's critical infrastructure.