ARTICLE
18 August 2023

SEC Adopts Cybersecurity Rules And Reporting Requirements For Public Companies

ML
Milbank LLP

Contributor

Milbank LLP is a leading international law firm that provides innovative legal services from 12 offices around the world. Founded in New York over 150 years ago, Milbank helps the world’s leading commercial, financial and industrial enterprises, as well as institutions, individuals and governments, achieve their strategic objectives.
On July 26, 2023, the SEC adopted rules requiring public companies and foreign private issuers (i) to timely disclose material cybersecurity incidents...
United States Corporate/Commercial Law

On July 26, 2023, the SEC adopted rules requiring public companies and foreign private issuers (i) to timely disclose material cybersecurity incidents and (ii) to disclose on an annual basis the registrant's cybersecurity risk management, strategy and governance. The SEC issued its rule proposal in March 2022, which was the subject of significant public commentary. As a result, the SEC made certain changes to the required disclosures, streamlining them to decrease the amount of detail needed. Yet, the final rule still dramatically alters the disclosure landscape for domestic and foreign registrants. Set forth below is a summary of the key provisions of the final rule.

Click here to read the full insight: "SEC Adopts Cybersecurity Rules and Reporting Requirements for Public Companies."

The content of this article is intended to provide a general guide to the subject matter. Specialist advice should be sought about your specific circumstances.

Mondaq uses cookies on this website. By using our website you agree to our use of cookies as set out in our Privacy Policy.

Learn More