Public Companies: SEC Issues Guidance on Cybersecurity Disclosures

more+
less-

The Guidance addresses a public company’s obligation to make certain disclosures concerning cybersecurity risks and cyber incidents.

On October 13, 2011, the Division of Corporation Finance of the U.S. Securities and Exchange Commission (SEC) issued “CF Disclosure Guidance: Topic No. 2 – Cybersecurity” (the Guidance), regarding a public company’s obligation to make certain disclosures concerning cybersecurity risks and cyber incidents. The SEC issued the Guidance in apparent response, at least in part, to a letter to the SEC signed earlier this year by five U.S. senators inviting SEC guidance on the topic. Signatories included U.S. Senators John D. Rockefeller, Sheldon Whitehouse, Richard Blumenthal, Robert Menendez and Mark Warner. The senators’ letter pointed to, among other things, a 2009 survey in which Hiscox, a cyber-insurance underwriter, found that 38 percent of public companies did not adequately report information about security risks in public disclosures.

Please see full article below for more information.

LOADING PDF: If there are any problems, click here to download the file.

Published In: Administrative Agency Updates, Business Organization Updates, Finance & Banking Updates, Science, Computers & Technology Updates, Securities Updates

DISCLAIMER: Because of the generality of this update, the information provided herein may not be applicable in all situations and should not be acted upon without specific legal advice based on particular situations.

© McDermott Will & Emery | Attorney Advertising

Don't miss a thing! Build a custom news brief:

Read fresh new writing on compliance, cybersecurity, Dodd-Frank, whistleblowers, social media, hiring & firing, patent reform, the NLRB, Obamacare, the SEC…

…or whatever matters the most to you. Follow authors, firms, and topics on JD Supra.

Create your news brief now - it's free and easy »