Cybersecurity-related enforcement has been one highlight of SEC activity in a year in which many are perceiving a general slowdown. At the recent Securities Enforcement Forum in Washington, D.C., hosted by Securities Docket, current and former SEC enforcement officials and members of the defense bar came together to share their insights on the direction of SEC enforcement. They discussed, among other things, what the new cyber unit is looking for, lessons from recent cases such as Yahoo and Voya, best practices for reporting breaches and takeaways from the recent Rule 21A Report about business email compromise. See “How Financial Services Firms Should Structure Their Cybersecurity Programs” (May 9, 2018).