New SEC Cyber Risk Disclosure Guidance: What Does It Mean for Public Companies?

ID COALFIRE:D250D8F095BF214A2561B02D4A465676
Type coalfire
Reporter The Coalfire Blog
Modified 2018-02-28T20:37:36


On February 21, the U.S. Securities and Exchange Commission (SEC) issued the long overdue cybersecurity interpretive guidance to address the methods and timing of cybersecurity risks and incidents disclosures. To signify the importance of this updated guidance, five SEC commissioners issued the guidance. The new guidance does not change any of the existing SEC rules, but it does address two new topics.