In the field of cybersecurity, there's a major debate regarding whether the public or private sector is best and how to strike a balance between the two sectors. For example, banks brag a great deal about what they've done, but I imagine that they often work with you. Does your organization have any ideas on how to find this balance?
You're not necessarily here to develop policies, but you implement them. Is there a balance that would enable you to do your job well and that would enable the private sector to continue innovating to protect consumers?