Recently, SEC Chair Gary Gensler delivered a speech about cybersecurity and a section of that speech was devoted to what public companies now disclose – and would be disclosing once the SEC ultimately adopts new cyber disclosure rules that it plans to propose in the near term – about their cybersecurity practices and incidents.

Here are three themes Chair Gensler highlighted in addressing potential SEC rulemaking for public companies on cybersecurity:

1. Rule proposals may include practices with respect to corporate cybersecurity governance, strategy, and risk management.

2. Cyber risk disclosure should be presented in a consistent, comparable, and decision-useful manner across companies.

3. The SEC Staff is considering whether – and how – to update disclosures to investors when cyber events have occurred.

Print:
Email this postTweet this postLike this postShare this post on LinkedIn
Photo of Allison Handy Allison Handy

Allison Handy is the firmwide co-chair of the Corporate & Securities practice. Her extensive experience includes advising public and private companies in connection with corporate governance practices, disclosure issues, and capital markets transactions, such as equity offerings, debt offerings and tender offers. She…

Allison Handy is the firmwide co-chair of the Corporate & Securities practice. Her extensive experience includes advising public and private companies in connection with corporate governance practices, disclosure issues, and capital markets transactions, such as equity offerings, debt offerings and tender offers. She is also a leader of the firm’s Environmental, Social, and Governance advisory team.

Allison provides counsel to companies on a broad range of issues faced by management and directors in connection with the many compliance aspects of securities laws, including governance rules adopted by the Securities and Exchange Commission (SEC) and stock exchanges. She advises boards and committees in matters related to internal investigations and the efforts of shareholder activists, and works closely with in-house counsel, financial personnel, and outside auditors and advisors to help her clients prepare proxy statements and other reports to investors that meet complex disclosure obligations.