Modern Technology has been around since after WWII and has steadily evolved from a limited amount of large computers with basic functions to a plethora of very advanced and small computers that can fit in the palm of your hand. Although legislation, policy, and infrastructure have been around longer than technology has, legislation, policy, and infrastructure have not evolved as fast to include technology. When it comes to policy in general, but specifically cyber-policy, there is a reactive posture when creating them. Either policymakers attempt to modify current policies to add cyber-related legislation or they go through a stringent process of creating a new policy with specific cyber-related legislation in mind. Either way, these methods come at the heels of something cyber-related occurring and a reaction is needed to regulate something and prevent it from occurring again in the same unchecked fashion. With the development of infrastructure, buildings and networks are usually constructed with the current standards and regulations in mind. They also work in a reactive posture as well. Upgrading buildings and networks to accommodate the evolving standards from the previous standards when first established can be a financial undertaking that some may not be willing to commit to unless deemed necessary. Water treatment facilities, for example, that may still be relying on antiquated computer systems like Windows XP to function because of its years of reliability are putting their system at risk of getting breached because of not upgrading to a currently supported system. Some businesses choose to weigh the risks and will prolong major financial expenses for as long as possible. For legislation, cyber-policy, and infrastructure, with the lack of predictive knowledge being available, it is difficult, maybe impossible to predict each and every scenario or situation that could occur and have things in place beforehand to regulate or prevent negative outcomes. The best that can be done for legislation and cyber policy is to understand the importance of having cyber policies in place and try to stay on par with what trends are currently happening and adjust accordingly. For infrastructure, staying updated with the latest technology and requirements will give you the best chance at being prepared for current issues and hopefully some future ones as well.