SEC proposes companies report cybersecurity incidents within four days
By 
Aaron Nicodemus2022-03-09T23:04:00
Public companies would have to report material cybersecurity incidents no later than four business days after they occur if a rule proposed by the Securities and Exchange Commission takes effect.
Related articles
-
News Brief
SEC proposes Reg S-P updates on incident response, breach notifications
The Securities and Exchange Commission proposed amendments to its regulation requiring broker-dealers, investment companies, and registered investment advisers to establish policies and procedures to safeguard customer records and information.
-
PremiumCongress or FTC? What about SEC? Where U.S. federal privacy legislation efforts stand in 2023
As more state laws hit the books, businesses are more adamant than ever Congress needs to pass a federal data privacy law. If lawmakers don’t rise to the occasion, which government agency might?
-
ArticleSEC to reopen comment on climate-related disclosure rule, data breach reporting after glitch
The Securities and Exchange Commission will reopen comment periods on 11 rulemaking releases put forward over the past year, including proposals regarding climate-related disclosures and reporting cybersecurity breaches, because of a glitch in its online comment system.
More from Regulatory Policy
-
ArticleTrump takes aim at state AI laws, promises federal action on AI legislation
President Donald Trump has issued an executive order aimed at dismantling the artificial intelligence (AI) laws of California, Colorado and three other states with comprehensive laws.
-
ArticleSFO sharpens framework for judging compliance programs in bribery and fraud cases
The U.K. Serious Fraud Office (SFO) has updated its guidance about how it evaluates corporate compliance programs when considering whether to prosecute or offer leniency to companies that have breached bribery and corruption laws.
-
ArticleFINRA annual regulatory report offers AI guidance, points to significant risks
Financial firms seeking guidance on AI, the threat of cyberattacks, market manipulation, or fraud targeting senior clients can turn to annual guidance issued by the Financial Industry Regulatory Authority.