"The SEC's Cybersecurity Rules"

The US Securities and Exchange Commission (SEC) has recently adopted rules requiring public companies to disclose cybersecurity incidents within four business days. After determining that an incident is material, the company has four business days to disclose it using the new Form 8-K Item 1.05. According to an SEC press release, the company must describe the material parts of the nature, timing, and scope of the incident, as well as its effects. The impact of the rules on companies, their management, boards of directors, and cybersecurity are of much discussion. This article continues to discuss the SEC's cybersecurity rules.

CACM reports "The SEC's Cybersecurity Rules"

Submitted by grigby1