• |

Jan. 3, 2024

SEC Director Offers Clarification on New Cyber Disclosure Regime

  • Vincent Pitaro
    Cybersecurity Law Report
On the cusp of key December 2023 compliance dates, Erik Gerding, Director of the SEC Division of Corporation Finance, issued a statement discussing the SEC’s new Cybersecurity Risk Management, Strategy, Governance and Incident Disclosure rules for public companies. Gerding highlighted “various changes the Commission made from the initial rule proposal; discusse[d] the rationale behind certain aspects of the rules; and attempt[ed] to clear up potential misconceptions, particularly regarding the materiality standard for incident disclosures and the national security/public safety delay provision,” Ropes & Gray partner Amy Jane Longo told the Cybersecurity Law Report. This article parses Gerding’s statement, with practical commentary and compliance best practices from Longo. See “Navigating the SEC’s Newly Adopted Cybersecurity Disclosure and Controls Regime” (Sep. 6, 2023).

To read the full article

Continue reading your article with a CSLR subscription.

Most-Read Articles

Spotlight on Trailblazing Women

To mark International Women’s Day 2024, women editors and reporters of ION Analytics interviewed outstanding women in the industries and jurisdictions we cover. In this part, Jill Abitbol, Managing Editor of the Cybersecurity Law Report and Anti-Corruption Report, features notable women in data privacy, cybersecurity, white collar defense, compliance and anti-corruption law, including Christina Montgomery, Leslie Shanklin, Palmina Fava, Alexandra Ross and Lucinda Low. Enjoy reading their inspiring remarks here.

We Celebrate Data Privacy Day 2024

Read the full brief here.