News and analysis for the well-informed compliance or audit exec. Select an option and click continue.
Annual Membership $499 Value offer
Full price one year membership with auto-renewal.
Membership $599
One-year only, no auto-renewal.
- Chief Compliance Officer and VP of Legal Affairs, Arrow Electronics
By Kyle Brasseur2023-07-26T16:30:00
The Securities and Exchange Commission (SEC) on Wednesday finalized its controversial rule requiring public companies to disclose the nature, scope, timing, and impact of cybersecurity incidents deemed to be material within four business days.
The rule, proposed in March 2022, has received significant attention in the past year for the relatively short timeline it provides businesses to grasp the extent of a cybersecurity incident such as a data breach. Also short will be its compliance date, as large companies as soon as December could be required to begin making the new disclosures.
Smaller reporting companies will receive an additional 180 days to comply.
THIS IS MEMBERS-ONLY CONTENT. To continue reading, choose one of the options below.
News and analysis for the well-informed compliance or audit exec. Select an option and click continue.
Annual Membership $499 Value offer
Full price one year membership with auto-renewal.
Membership $599
One-year only, no auto-renewal.
2023-12-13T18:04:00Z By Kyle Brasseur
Companies won’t have an easy path toward earning additional time from the Department of Justice regarding the disclosure of a material cybersecurity incident to the Securities and Exchange Commission as required under a new rule.
2023-10-16T21:16:00Z By Jeff Dale
Software company Blackbaud agreed to pay $49.5 million in a multistate settlement addressing charges related to a 2020 cyberattack that exposed the personal data of approximately 13,000 consumers.
2023-08-04T18:01:00Z By Adrianne Appel
Covington & Burling is leaving open the possibility of appealing a recent federal court order requiring the law firm to provide the names of hacked clients to the Securities and Exchange Commission.
2024-10-22T14:37:00Z By Aaron Nicodemus
The Department of Justice (DOJ) has proposed a new rule that would regulate the use of Americans’ personal information by foreign companies and foreign persons in six “countries of concern,” prohibiting and restricting the sale of data to thwart the use of data for cyber-enabled activities, espionage, coercion, influence and ...
2024-10-17T17:42:00Z By Adrianne Appel
New York financial institutions are expected to address cybersecurity risks posed by artificial intelligence (AI), and new guidance from the New York Department of Financial Services is aimed at helping firms do just that.
2024-10-17T16:22:00Z By Neil Hodge
Concerns about how robustly European member states may enforce the EU AI Act, which took effect on Aug. 1, are divided between if regulators will take a “light touch” approach or a sledgehammer for noncompliance. One thing’s for sure, the pace of AI innovation will make enforcement very difficult.
Site powered by Webvision Cloud