Whose responsibility is cyber-security?

Discussions about staying cyber-secure can go on until we are blue in the face but who actually is responsible to ensure a business is protected from cyber-crime? A cyber-security company like us? Your manager? The IT department? The government? Actually, the person responsible is you.