SEC Clarifies Cybersecurity Incident Disclosure Rules: Key Takeaways for Companies

CybersecurityDigital Risk
Written By Samantha "Sam" Jones

The Securities and Exchange Commission (SEC) continues to refine its stance on the disclosure of material cybersecurity incidents, addressing corporate concerns and compliance complexities. On June 20, 2024, Erik Gerding, the Director of the SEC’s Division of Corporation Finance, provided further clarification regarding the selective disclosure of cybersecurity incidents. This move comes in response to persistent questions surrounding the SEC’s final cybersecurity disclosure rules, specifically under Item 1.05 of Form 8-K.

Samantha "Sam" Jones

Samantha “Sam” Jones is a seasoned technology market analyst, specializing in integrated risk management and adept at uncovering market insights through advanced analytical tools. Passionate about sustainable business practices and emerging technologies, she enjoys staying at the forefront of the industry by participating in community tech events and exploring new trends.

Sign up to read this post
Join Now
Previous

Wheelhouse Risk Cycle: Diagnose AI Risks as SEC Filings Indicate Rising Concerns
Next

Leading with Purpose: How Boards Can Drive Sustainability Through Integrated Risk Management