You can’t seriously think that most people do a good job of assessing cybersecurity risks accurately.