The Securities and Exchange Commission's (SEC's) proposed cybersecurity disclosure rules, which would allow investors for the first time to make apples-to-apples comparisons of companies' cyberattack vulnerabilities and defenses, might actually have the unintended consequence of giving bad actors artillery to do more harm.
That was among the common themes in letters that companies, trade groups, and other interested parties submitted to the SEC in response to the March rollout of the proposed rules. Many of the more than 140 letters expressed concern about the rules' requirement that companies disclose material cybersecurity incidents within four days.
Complete your profile to continue reading and get FREE access to Treasury & Risk, part of your ALM digital membership.
Your access to unlimited Treasury & Risk content isn’t changing.
Once you are an ALM digital member, you’ll receive:
- Critical Treasury & Risk information including in-depth analysis of treasury and finance best practices, case studies with corporate innovators, informative newsletters, educational webcasts and videos, and resources from industry leaders.
- Exclusive discounts on ALM and Treasury & Risk events.
- Access to other award-winning ALM websites including PropertyCasualty360.com and Law.com.
*May exclude premium content
Already have an account? Sign In
© 2024 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.
Greg Andrews
Greg Andrews is the editor overseeing ALM Media's coverage of corporate legal departments. He previously was editor of Indianapolis Business Journal and business editor of The Indianapolis Star. Contact him at [email protected]. On Twitter: @Greg_Andr
