Who Is Listening? The SEC Emphasizes Importance of Cybersecurity Disclosure


The U.S. Securities and Exchange Commission (SEC) staff recently issued guidance concerning its views on disclosure obligations related to cybersecurity risks and cyber incidents. The SEC staff issued the guidance in response to a letter that SEC Chairman Mary Schapiro received in May 2011 from five U.S. Senators requesting that the SEC publish interpretive advice “clarifying the existing disclosure requirements pertaining to information security risk, including material information security breaches involving intellectual property or trade secrets.”

This guidance may be followed by additional legislative and regulatory action in light of the attention cybersecurity has received over the last several years. Some of these legislative or regulatory actions may even have an impact on the SEC disclosure obligations of public companies. For example, the Obama Administration presented draft legislation relating to cybersecurity to the Congress that would, among other things, require the chief executive and other executive officers of public companies to include a certification in their public SEC reports regarding their development and implementation of a cybersecurity plan for their companies and the effectiveness of the plan in mitigating identified cybersecurity risks.

Please see full alert below for more information.

LOADING PDF: If there are any problems, click here to download the file.

DISCLAIMER: Because of the generality of this update, the information provided herein may not be applicable in all situations and should not be acted upon without specific legal advice based on particular situations.

© Eversheds Sutherland (US) LLP | Attorney Advertising

Written by:


Eversheds Sutherland (US) LLP on:

Readers' Choice 2017
Reporters on Deadline

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:

Sign up to create your digest using LinkedIn*

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.

Already signed up? Log in here

*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.