SEC Proposes Rules on Cybersecurity Risk Management, Strategy, Governance, and Incident Disclosure by Public Companies

Alexander May, Shoba Pillay, Charles Riely, Hannah Schwab
Jenner & Block
Contact
LinkedIn
Facebook
X
Send
Embed

Last week, the SEC proposed rule amendments to enhance and standardize disclosures regarding cybersecurity risk management, strategy, governance, and incident reporting by public companies. The proposed rules include an amendment to Form 8-K that would require public companies to disclose a cybersecurity incident within four business days following the company’s determination that the incident is material to the company. The proposed rules also include a series of new disclosure obligations regarding risk management and governance that appear designed to encourage improvements in what companies are actually doing to address these risks. This alert summarizes the key takeaways from the proposed amendments.

Please see full publication below for more information.

View PDF
Download PDF [246KB]
Email
Report

LOADING PDF: If there are any problems, click here to download the file.
Send Report

DISCLAIMER: Because of the generality of this update, the information provided herein may not be applicable in all situations and should not be acted upon without specific legal advice based on particular situations.

© Jenner & Block | Attorney Advertising

Written by:

Jenner & Block
Jenner & Block
Contact
more
less

PUBLISH YOUR CONTENT ON JD SUPRA NOW

  • Increased visibility
  • Actionable analytics
  • Ongoing guidance

Jenner & Block on:

Reporters on Deadline

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign Up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
Custom Email Digest
- hide
- hide