SEC adopts new cybersecurity incident disclosure rules for companies

The Securities and Exchange Commission (SEC) today adopted rules requiring registrants to disclose material cybersecurity incidents they experience and to disclose on an annual basis material information regarding their cybersecurity risk management, strategy, and governance. The Commission also adopted rules requiring foreign private issuers to make comparable disclosures. “Whether a company loses a factory in a fire — or millions of files in a cybersecurity incident — it may be material to investors,” said SEC … More →

The post …

companies cybersecurity cybersecurity incident cybersecurity incidents cybersecurity risk cybersecurity risk management disclosure disclosures don't miss exchange experience governance government incident incidents information management private regulation risk risk management rules sec securities securities and exchange commission strategy today usa