Under a new plan from the U.S. Securities and Exchange Commission (SEC), companies would face more pressure to alert the public of hacks or other significant cybersecurity incidents. On Wednesday, the SEC proposed requiring publicly traded firms to disclose breaches within four days. The demands would apply to incidents that are considered "material," or important to the average investor.
After years of high-profile incidents, this is the SEC's latest move to prod companies to be more transparent when attacks occur. Last month, the agency proposed requiring investment companies to bolster their cybersecurity systems.
"Cybersecurity incidents, unfortunately, happen a lot," SEC Chair Gary Gensler said in a statement. "A lot of issuers already provide cybersecurity disclosure to investors. I think companies and investors alike would benefit if this information were required in a consistent, comparable, and decision-useful manner."
Complete your profile to continue reading and get FREE access to Treasury & Risk, part of your ALM digital membership.
Your access to unlimited Treasury & Risk content isn’t changing.
Once you are an ALM digital member, you’ll receive:
- Critical Treasury & Risk information including in-depth analysis of treasury and finance best practices, case studies with corporate innovators, informative newsletters, educational webcasts and videos, and resources from industry leaders.
- Exclusive discounts on ALM and Treasury & Risk events.
- Access to other award-winning ALM websites including PropertyCasualty360.com and Law.com.
*May exclude premium content
Already have an account? Sign In
© 2024 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.
