News & Analysis as of

Compliance Cybersecurity Publicly-Traded Companies

Compliance programs typically refer to formalized institutional procedures within corporations and organizations to detect, prevent and respond to indvidual and widespread instances of regulatory violations. ... more +
Compliance programs typically refer to formalized institutional procedures within corporations and organizations to detect, prevent and respond to indvidual and widespread instances of regulatory violations.  In response to many corporate scandals evidencing rampant unethical business practices, many nations, including the United States, began passing strict regulatory frameworks aimed at curbing these abuses. Notable pieces of legislation in this area include the U.S. Foreign Corrupt Practices Act (FCPA), Sarbanes-Oxley (SOX), and the U.K. Bribery Act, to name a few. The foregoing statutes and the severe penalties often associated with them form the basis of many modern institutional compliance programs. less -
White & Case LLP

Prepare Now for Edgar Next

White & Case LLP on

On September 27, 2024, the Securities and Exchange Commission (the "SEC") adopted rule and form amendments to the Commission's Electronic Data Gathering, Analysis, and Retrieval ("EDGAR") system to improve access to and...more

Foley & Lardner LLP

SEC Actions in Review: What Officers and Directors Should Know for 2025

Foley & Lardner LLP on

As the regulatory landscape continues to evolve, public company officers and directors must stay abreast of the enforcement priorities and expectations of the Securities and Exchange Commission (SEC). Over the past year, the...more

BakerHostetler

2024 SEC Cybersecurity Rule Updates

BakerHostetler on

The first year of a new significant regulatory obligation is often more notable for the absence of regulatory enforcement actions as regulators often observe compliance efforts and challenges, offer guidance, and look for...more

Paul Hastings LLP

SEC Cybersecurity Incident Disclosure Report

Paul Hastings LLP on

Paul Hastings released its SEC Cyber Incident Disclosure Report today, providing a unique look at how public companies have responded to new incident disclosure requirements. The Securities Exchange Commission (SEC) approved...more

Latham & Watkins LLP

Recent Developments for Directors - November 2024

Latham & Watkins LLP on

SEC Penalizes Director for Misleading D&O Questionnaire Response - The SEC recently brought an enforcement action against a director for causing violations of the proxy rules by failing to disclose a close personal...more

Society of Corporate Compliance and Ethics...

The SEC’s cybersecurity and disclosure rules: The questions compliance pros still have

Society of Corporate Compliance and Ethics... on

The U.S. Securities and Exchange Commission (SEC) Cybersecurity Risk Management, Strategy, Governance, and Incident Disclosure rules officially went into effect in December 2023. Aimed at improving cybersecurity risk...more

Fenwick & West LLP

The SEC is Cracking Down on Misleading Cybersecurity Disclosure

Fenwick & West LLP on

On October 22, 2024, the SEC charged two current reporting companies, Unisys Corp. and Check Point Software Technologies, and two former public companies, Mimecast Limited and Avaya Holdings Corp., with making materially...more

Wilson Sonsini Goodrich & Rosati

Corp Fin Issues CDIs on Cybersecurity Incident Reporting

Wilson Sonsini Goodrich & Rosati on

As part of its continuing efforts to clarify the application of the SEC’s rules regarding the disclosure of material cybersecurity incidents, on June 24, 2024, the Division of Corporation (Corp Fin) issued five new Compliance...more

Holland & Knight LLP

SEC Corporation Finance Director Voluntarily Weighs in on Cybersecurity Incident Disclosures

Holland & Knight LLP on

The U.S. Securities and Exchange Commission's (SEC) Division of Corporation Finance Director Erik Gerding released a statement on May 21, 2024, addressing Disclosure of Cybersecurity Incidents Determined to be Material and...more

WilmerHale

8 Questions To Ask Before Final CISA Breach Reporting Rule

WilmerHale on

On April 4, the Cybersecurity and Infrastructure Security Agency published a notice of proposed rulemaking setting out mandatory reporting requirements for covered entities that experience cybersecurity incidents or make...more

Saul Ewing LLP

Public Companies Quarterly Update (Q4 2023)

Saul Ewing LLP on

Welcome to Saul Ewing’s Public Companies Quarterly Update series. Our intent is to, on a quarterly basis, highlight important legal developments of which we think public companies should be aware. This edition is related to...more

BCLP

Pressure-Testing Your Privacy Program for 2024

BCLP on

With the onslaught of new privacy legislation and cyber threats coupled with upticks in enforcement, running a well-functioning and flexible privacy program is now, more than ever, a critical component of an organization’s...more

Thomas Fox - Compliance Evangelist

SEC, Solar Winds and Compliance

Thomas Fox - Compliance Evangelist on

The recent SEC lawsuit against SolarWinds Corp and its CISO, Tim Brown, following the 2020 data breach, has brought the issue of executive liability in cybersecurity disclosures to the forefront. This case sheds light on the...more

BakerHostetler

Addressing the SEC’s New Cybersecurity Risk Management, Strategy, Governance and Incident Disclosure Requirements

BakerHostetler on

In July 2023, the SEC adopted new cybersecurity rules for the stated purpose of enhancing and standardizing disclosures regarding cybersecurity risk management, strategy, governance and incidents by public companies. The...more

Baker Donelson

Show Your Work: The SEC Cyber Rules and Documenting Materiality Analysis Under NIST FIPS 199

Baker Donelson on

The date July 26, 2023, marks the latest evolution of the cybersecurity regulation landscape as the Securities and Exchange Commission passed cybersecurity regulations for publicly traded companies. At the open meeting, SEC...more

Keating Muething & Klekamp PLL

Securities Snapshot: 3rd Quarter 2023 - What You Need to Know About The SEC's Latest Rulemaking

Keating Muething & Klekamp PLL on

The weather may be cooling down, but the Securities and Exchange Commission (“SEC”) did not cool down its pace of rulemaking during the third quarter of 2023. The SEC adopted its highly anticipated cybersecurity disclosure...more

Parker Poe Adams & Bernstein LLP

Next Steps for Companies Ahead of December Deadline for SEC Cybersecurity Disclosures

Parker Poe Adams & Bernstein LLP on

In less than three months, public companies and certain foreign private companies will have to take additional steps after cybersecurity breaches: deciding whether an incident meets the materiality threshold that requires...more

Dorsey & Whitney LLP

New SEC Cybersecurity Rules Require Mandatory Disclosure

Dorsey & Whitney LLP on

On July 26, 2023, the Securities and Exchange Commission adopted new rules imposing disclosure requirements regarding cybersecurity risk management, strategy, governance and incidents. The new rules, which became effective...more

Venable LLP

Key Actions for Public Companies under the SEC's New Cybersecurity Rules

Venable LLP on

On July 26, 2023, the Securities Exchange Commission (SEC) adopted a final rule intended to augment and standardize disclosures regarding cybersecurity risk management, governance, and incident reporting. The new rule imposes...more

The Volkov Law Group

Episode 288 -- SEC Adopts Robust New Cybersecurity Disclosure Rules

The Volkov Law Group on

In late July 2023, the Securities and Exchange Commission (“SEC”) adopted new rules requiring public companies to disclose cybersecurity incidents and cybersecurity governance policies and practice.  The SEC largely adopted...more

Smith Anderson

Public Companies Get Prepared: SEC Adopts New Cybersecurity Disclosure Rules

Smith Anderson on

The SEC adopted new rules for public companies regarding disclosure of information relating to cybersecurity risk management, strategy, governance, and material incidents. Companies will now be required to disclose...more

Arnall Golden Gregory LLP

New SEC Cybersecurity Rules Are Here: What Should Companies Be Doing to Comply?

Arnall Golden Gregory LLP on

SEC Cybersecurity Rule Fact Sheet What Is the New Rule? In late July 2023, the SEC adopted new rules that will require publicly traded companies to: disclose cybersecurity incidents within four business days of determining...more

Husch Blackwell LLP

Twelve Planning Tips to Avoid Complications with the SEC’s Cybersecurity Disclosure Rules: Part I

Husch Blackwell LLP on

Key Point: To avoid inadvertently increasing enforcement and litigation risks, companies should consider these suggestions to minimize headaches with the SEC’s final rules that mandate (a) disclosures in annual report of...more

Epiq

Breaking Down the New SEC Cybersecurity Rules

Epiq on

On July 26, the Securities and Exchange Commission (SEC) adopted new cybersecurity rules. Organizations will need to disclose material cyber incidents pursuant to a prescribed timeline and information regarding risk...more

Guidepost Solutions LLC

The SEC has new Cybersecurity Rules. Are you prepared and ready?

Guidepost Solutions LLC on

On July 26, 2023, the Securities and Exchange Commission (SEC) implemented new cybersecurity rules to require disclosure of material cybersecurity incidents within four business days, with limited exceptions.  Additionally,...more

46 Results
 / 
View per page
Page: of 2
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide