Does your business truly understand its dependencies, and how to mitigate the risks posed by an attack on them?