Starting today, the SEC’s Cybersecurity Incident Reporting rule requires all publicly traded companies to report material cybersecurity breaches within four days. Companies must include standardized information to ensure consistent reporting of these incidents to the public. Like all SEC rules, there are financial penalties for non-compliance so company leadership should know how to respond when breaches occur.
Read more to understand how these rules may affect your company here: Phillip Carrington on Medium.
About the Authors
Phillip Carrington is a Manager within DayBlink Consulting’s Cybersecurity Group.