Anything that government and industry learn from hackers must be seen through the lens of their own risk management needs.