Michael Borgia

Michael Borgia

Davis Wright Tremaine LLP

Contact

Readers' Choice Awards

Cybersecurity
View Bio
RSS

Latest Posts › Cyber Incident Reporting

Share:

Regulatory Reset? U.S. Cyber Incident Reporting Rules Face Congressional Scrutiny

Lawmakers expressed bipartisan support for significantly amending or eliminating some cybersecurity incident notification requirements during a recent hearing of the U.S. House Committee on Homeland Security's Subcommittee on...more

3/21/2025  /  Cyber Incident Reporting , Cybersecurity , Data Breach , Disclosure Requirements , Regulatory Agenda , Regulatory Reform , Reporting Requirements , Risk Management , Securities and Exchange Commission (SEC)

SEC Clarifies Reporting of Material vs. Immaterial Cybersecurity Incidents

The U.S. Securities and Exchange Commission's (SEC) Division of Corporate Finance (Division) published a statement on May 21, 2024, regarding how public companies may disclose cyber incidents they determined to be immaterial....more

6/3/2024  /  Cyber Incident Reporting , Cybersecurity , Division of Corporate Finance , Enforcement , Form 8-K , Securities and Exchange Commission (SEC) , Voluntary Disclosure

DOJ, FBI Issue Guidance for Public Companies Seeking to Delay Disclosure of Material Cybersecurity Incidents

As we discussed in our prior blog post, the Securities and Exchange Commission (SEC) recently finalized its Cybersecurity Risk Management, Strategy, Governance, and Incident Disclosure rule for public companies (the "Rule")....more

12/15/2023  /  Cyber Incident Reporting , Cybersecurity , Department of Justice (DOJ) , Disclosure Requirements , FBI , Form 8-K , Infrastructure , New Guidance , Popular , Publicly-Traded Companies , Remediation , Securities and Exchange Commission (SEC)

SEC Adopts Cybersecurity Rule for Public Companies

On July 26, 2023, the U.S. Securities and Exchange Commission (SEC or Commission) finalized its Cybersecurity Risk Management, Strategy, Governance, and Incident Disclosure rule for public companies (the "Final Rule") by a...more

8/1/2023  /  Cyber Incident Reporting , Cybersecurity , Data Breach , Disclosure Requirements , Final Rules , Publicly-Traded Companies , Securities and Exchange Commission (SEC)

SEC Delays Proposed Cybersecurity Rules

According to its Spring 2023 rulemaking agenda, the U.S. Securities and Exchange Commission (SEC) has delayed issuance of two sets of cybersecurity requirements that previously were expected to be finalized in April 2023. The...more

6/28/2023  /  Broker-Dealer , Business Development Companies , Corporate Governance , Corporate Strategy , Cyber Incident Reporting , Cybersecurity , Investment Adviser , Proposed Rules , Publicly-Traded Companies , Registered Investment Advisors , Regulatory Agenda , Risk Management , Rulemaking Process , Securities and Exchange Commission (SEC)

CISA Issues RFI For Cyber Reporting Rules and Announces Public Listening Sessions

The federal Cybersecurity & Infrastructure Security Agency (CISA) has issued a request for information (RFI) seeking public input on its development of cyber incident and ransom payment reporting rules under the Cyber...more

9/29/2022  /  Critical Infrastructure Sectors , Cyber Attacks , Cyber Incident Reporting , Cybersecurity , Cybersecurity Information Sharing Act (CISA) , Data Security , Ransomware , Reporting Requirements , Request For Information

The Cyber Incident Reporting for Critical Infrastructure Act of 2022: An Overview

The Cyber Incident Reporting for Critical Infrastructure Act of 2022 (CIRCIA), signed into law by President Biden in March 2022 as part of the Consolidated Appropriations Act of 2022, will require companies operating in...more

5/20/2022  /  Critical Infrastructure Sectors , Cyber Attacks , Cyber Incident Reporting , Cyber Incident Reporting for Critical Infrastructure Act of 2022 (CIRCIA) , Cybersecurity , Cybersecurity Information Sharing Act (CISA) , Data Security , Popular , Ransomware , Reporting Requirements

SEC Proposes New Cyber Disclosure Rules for Public Companies

On March 9, 2022, the Securities and Exchange Commission (SEC) announced proposed rules requiring publicly listed companies to make several specific disclosures related to cybersecurity incidents and the registrant's...more

3/18/2022  /  Cyber Incident Reporting , Cybersecurity , Disclosure Requirements , Form 8-K , Policies and Procedures , Publicly-Traded Companies , Securities and Exchange Commission (SEC)
8 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide