Cybersecurity is no longer a CISO conversation — it is a board-level discussion happening alongside AI, geopolitics, and macroeconomic risk. Dylan Sandlin, Program Manager for Digital and Cybersecurity Content at NACD (National Association of Corporate Directors), joins Alan Shimel on TechStrong TV to unpack what good board oversight of cyber risk looks like in 2026 and walk through the newly released fifth edition of NACD's Director's Handbook on Cyber-Risk Oversight. Dylan explains why not taking technology risk has become an existential threat, how the SEC's material cyber-risk disclosure rules raised the bar for board accountability, and why a director's duty of loyalty and duty of care now extends to cybersecurity. He outlines NACD's three-legged stool of effective oversight — personnel and board composition, structure and committee delegation, and reporting cadence — and shares practical guidance for directors who think cyber is someone else's job. The conversation closes with how directors can keep current as threats evolve.