LogoRegulatory Alerts
2022-03-09

Cybersecurity Risk Management, Strategy, Governance, and Incident Disclosure

The Securities and Exchange Commission proposes new rules requiring public companies to disclose material cybersecurity incidents through current reporting on Form 8-K and periodic updates in annual reports. The amendments mandate standardized disclosures detailing cybersecurity risk management strategies, board oversight and expertise, and the implementation of relevant policies. All required disclosures must be submitted in Inline XBRL format to enhance investor transparency and ensure timely, comparable market information.

Securities and Exchange Commission logo

United States

Securities and Exchange Commission

Click to view full text
Share