Hacked U.S. companies have more options, departing cybersecurity official says