There has been a lot of pushback on reporting requirements around security breaches. While I think some of the feedback mentioned in the article is reasonable, many companies will not realistically improve their security posture if it isn’t impacting their bottom line in a clear and present way.