The finance and real estate industries are at higher risk of experiencing a high-cost material cybersecurity incident, compared to other sectors, according to new research.

A report released this month by risk modeling firm Kovrr reviewed data from U.S. Fortune 1,000 companies to determine how often different industry sectors could expect to experience serious cybersecurity events and how much those incidents could cost.

The firm produced the analysis considering the Securities and Exchange Commission’s upcoming requirement that public companies disclose the nature, scope, timing, and impact of cybersecurity incidents deemed to be material within four business days.