{"id":6780,"date":"2024-01-03T20:35:51","date_gmt":"2024-01-03T20:35:51","guid":{"rendered":"https:\/\/fintech.global\/cybertech100\/?p=6780"},"modified":"2024-01-03T20:35:51","modified_gmt":"2024-01-03T20:35:51","slug":"the-impact-of-secs-cybersecurity-disclosure-changes-on-public-firms","status":"publish","type":"post","link":"https:\/\/fintech.global\/cybertech100\/the-impact-of-secs-cybersecurity-disclosure-changes-on-public-firms\/","title":{"rendered":"The impact of SEC\u2019s cybersecurity disclosure changes on public firms"},"content":{"rendered":"<p><strong>The US SEC has made significant clarifications regarding its new cyber incident disclosure rules, which came into effect yesterday.<\/strong><\/p>\n<p>According to\u00a0<a href=\"https:\/\/www.securityweek.com\/sec-shares-important-clarifications-as-new-cyber-incident-disclosure-rules-come-into-effect\/\">Security Week<\/a>, originally announced in late July, these rules mandate public companies to disclose any material cybersecurity breach within four business days of its discovery. Additionally, annual reports must now include details on cybersecurity risk management, strategy, and governance.<\/p>\n<p>The SEC\u2019s initiative aims to provide investors with timely and consistent information, aiding in informed investment and voting decisions. This comes in the wake of concerns that such disclosures could inadvertently aid threat actors by revealing critical information.<\/p>\n<p>Erik Gerding, director of the SEC\u2019s Division of Corporation Finance, in a recent blog post, highlighted key aspects of these rules. He emphasized the shift towards focusing on the material impacts of incidents rather than extensive technical details. This approach seeks to prevent inadvertently aiding future cyber attacks by withholding specific technical information about the company\u2019s incident response or vulnerabilities.<\/p>\n<p>Gerding also addressed concerns regarding the \u2018four business day\u2019 disclosure requirement. He clarified that initial notifications to the SEC need not be comprehensive, allowing companies to submit additional details later. The final rule version has been adjusted to reduce undue pressure on companies, such as removing the requirement for board members to have cybersecurity expertise.<\/p>\n<p>Furthermore, the SEC has made provisions for companies to delay disclosure if it poses a substantial risk to public safety or national security. Organizations can request exemptions, and the Justice Department, along with the FBI, can grant delays of up to 120 business days, with longer delays requiring SEC approval.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>The US SEC has made significant clarifications regarding its new cyber incident disclosure rules, which came into effect yesterday. According to\u00a0Security Week, originally announced in late July, these rules mandate public companies to disclose any material cybersecurity breach within four business days of its discovery. Additionally, annual reports must now include details on cybersecurity risk [&hellip;]<\/p>\n","protected":false},"author":4,"featured_media":6783,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[1],"tags":[57],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v19.6.1 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>The impact of SEC\u2019s cybersecurity disclosure changes on public firms - CyberTech100<\/title>\n<meta name=\"description\" content=\"The US SEC has made significant clarifications regarding its new cyber incident disclosure rules, which came into effect yesterday.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/fintech.global\/cybertech100\/the-impact-of-secs-cybersecurity-disclosure-changes-on-public-firms\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"The impact of SEC\u2019s cybersecurity disclosure changes on public firms - CyberTech100\" \/>\n<meta property=\"og:description\" content=\"The US SEC has made significant clarifications regarding its new cyber incident disclosure rules, which came into effect yesterday.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/fintech.global\/cybertech100\/the-impact-of-secs-cybersecurity-disclosure-changes-on-public-firms\/\" \/>\n<meta property=\"og:site_name\" content=\"CyberTech100\" \/>\n<meta property=\"article:published_time\" content=\"2024-01-03T20:35:51+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/fintech.global\/cybertech100\/wp-content\/uploads\/2024\/01\/The-impact-of-SECs-cybersecurity-disclosure-changes-on-public-firms-696x464-1.webp\" \/>\n\t<meta property=\"og:image:width\" content=\"696\" \/>\n\t<meta property=\"og:image:height\" content=\"464\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/webp\" \/>\n<meta name=\"author\" content=\"editorial\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"editorial\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/fintech.global\/cybertech100\/the-impact-of-secs-cybersecurity-disclosure-changes-on-public-firms\/\",\"url\":\"https:\/\/fintech.global\/cybertech100\/the-impact-of-secs-cybersecurity-disclosure-changes-on-public-firms\/\",\"name\":\"The impact of SEC\u2019s cybersecurity disclosure changes on public firms - CyberTech100\",\"isPartOf\":{\"@id\":\"https:\/\/fintech.global\/cybertech100\/#website\"},\"datePublished\":\"2024-01-03T20:35:51+00:00\",\"dateModified\":\"2024-01-03T20:35:51+00:00\",\"author\":{\"@id\":\"https:\/\/fintech.global\/cybertech100\/#\/schema\/person\/700e93a9f1ec1d00f1b7baf07636829d\"},\"description\":\"The US SEC has made significant clarifications regarding its new cyber incident disclosure rules, which came into effect yesterday.\",\"breadcrumb\":{\"@id\":\"https:\/\/fintech.global\/cybertech100\/the-impact-of-secs-cybersecurity-disclosure-changes-on-public-firms\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/fintech.global\/cybertech100\/the-impact-of-secs-cybersecurity-disclosure-changes-on-public-firms\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/fintech.global\/cybertech100\/the-impact-of-secs-cybersecurity-disclosure-changes-on-public-firms\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/fintech.global\/cybertech100\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"The impact of SEC\u2019s cybersecurity disclosure changes on public firms\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/fintech.global\/cybertech100\/#website\",\"url\":\"https:\/\/fintech.global\/cybertech100\/\",\"name\":\"CyberTech100\",\"description\":\"The world\u2019s most innovative CyberTech companies that every financial institution needs to know about\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/fintech.global\/cybertech100\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/fintech.global\/cybertech100\/#\/schema\/person\/700e93a9f1ec1d00f1b7baf07636829d\",\"name\":\"editorial\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/fintech.global\/cybertech100\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/e25caf13ff74e4ec69c5895b17b6b1e0?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/e25caf13ff74e4ec69c5895b17b6b1e0?s=96&d=mm&r=g\",\"caption\":\"editorial\"},\"url\":\"https:\/\/fintech.global\/cybertech100\/author\/editorial\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"The impact of SEC\u2019s cybersecurity disclosure changes on public firms - CyberTech100","description":"The US SEC has made significant clarifications regarding its new cyber incident disclosure rules, which came into effect yesterday.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/fintech.global\/cybertech100\/the-impact-of-secs-cybersecurity-disclosure-changes-on-public-firms\/","og_locale":"en_US","og_type":"article","og_title":"The impact of SEC\u2019s cybersecurity disclosure changes on public firms - CyberTech100","og_description":"The US SEC has made significant clarifications regarding its new cyber incident disclosure rules, which came into effect yesterday.","og_url":"https:\/\/fintech.global\/cybertech100\/the-impact-of-secs-cybersecurity-disclosure-changes-on-public-firms\/","og_site_name":"CyberTech100","article_published_time":"2024-01-03T20:35:51+00:00","og_image":[{"width":696,"height":464,"url":"https:\/\/fintech.global\/cybertech100\/wp-content\/uploads\/2024\/01\/The-impact-of-SECs-cybersecurity-disclosure-changes-on-public-firms-696x464-1.webp","type":"image\/webp"}],"author":"editorial","twitter_card":"summary_large_image","twitter_misc":{"Written by":"editorial","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/fintech.global\/cybertech100\/the-impact-of-secs-cybersecurity-disclosure-changes-on-public-firms\/","url":"https:\/\/fintech.global\/cybertech100\/the-impact-of-secs-cybersecurity-disclosure-changes-on-public-firms\/","name":"The impact of SEC\u2019s cybersecurity disclosure changes on public firms - CyberTech100","isPartOf":{"@id":"https:\/\/fintech.global\/cybertech100\/#website"},"datePublished":"2024-01-03T20:35:51+00:00","dateModified":"2024-01-03T20:35:51+00:00","author":{"@id":"https:\/\/fintech.global\/cybertech100\/#\/schema\/person\/700e93a9f1ec1d00f1b7baf07636829d"},"description":"The US SEC has made significant clarifications regarding its new cyber incident disclosure rules, which came into effect yesterday.","breadcrumb":{"@id":"https:\/\/fintech.global\/cybertech100\/the-impact-of-secs-cybersecurity-disclosure-changes-on-public-firms\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/fintech.global\/cybertech100\/the-impact-of-secs-cybersecurity-disclosure-changes-on-public-firms\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/fintech.global\/cybertech100\/the-impact-of-secs-cybersecurity-disclosure-changes-on-public-firms\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/fintech.global\/cybertech100\/"},{"@type":"ListItem","position":2,"name":"The impact of SEC\u2019s cybersecurity disclosure changes on public firms"}]},{"@type":"WebSite","@id":"https:\/\/fintech.global\/cybertech100\/#website","url":"https:\/\/fintech.global\/cybertech100\/","name":"CyberTech100","description":"The world\u2019s most innovative CyberTech companies that every financial institution needs to know about","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/fintech.global\/cybertech100\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/fintech.global\/cybertech100\/#\/schema\/person\/700e93a9f1ec1d00f1b7baf07636829d","name":"editorial","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/fintech.global\/cybertech100\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/e25caf13ff74e4ec69c5895b17b6b1e0?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/e25caf13ff74e4ec69c5895b17b6b1e0?s=96&d=mm&r=g","caption":"editorial"},"url":"https:\/\/fintech.global\/cybertech100\/author\/editorial\/"}]}},"_links":{"self":[{"href":"https:\/\/fintech.global\/cybertech100\/wp-json\/wp\/v2\/posts\/6780"}],"collection":[{"href":"https:\/\/fintech.global\/cybertech100\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/fintech.global\/cybertech100\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/fintech.global\/cybertech100\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/fintech.global\/cybertech100\/wp-json\/wp\/v2\/comments?post=6780"}],"version-history":[{"count":1,"href":"https:\/\/fintech.global\/cybertech100\/wp-json\/wp\/v2\/posts\/6780\/revisions"}],"predecessor-version":[{"id":6787,"href":"https:\/\/fintech.global\/cybertech100\/wp-json\/wp\/v2\/posts\/6780\/revisions\/6787"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/fintech.global\/cybertech100\/wp-json\/wp\/v2\/media\/6783"}],"wp:attachment":[{"href":"https:\/\/fintech.global\/cybertech100\/wp-json\/wp\/v2\/media?parent=6780"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/fintech.global\/cybertech100\/wp-json\/wp\/v2\/categories?post=6780"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/fintech.global\/cybertech100\/wp-json\/wp\/v2\/tags?post=6780"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}