How to Align Your Incident Response Practices With the New SEC Disclosure Rules

Industry news
Post Reply
rbc
President
Posts: 295
Joined: Mon Oct 30, 2023 1:32 am
Location: Vicksburg, MS
ISC2 Member Status: Yes
Contact:

How to Align Your Incident Response Practices With the New SEC Disclosure Rules

Post by rbc »

As of December 18, 2023, publicly traded organizations must comply with the Security and Exchange Commission (SEC) incident disclosure regulations, which were originally unveiled in July 2023. Under the new rules, publicly traded companies will be required to report cyber incidents within four business days of determining that the incident is “material,” meaning it would potentially impact a shareholder’s investment decisions. While many existing government regulations and industry standards have required organizations to establish business continuity and incident response (IR) plans in the past, the new SEC rules put more pressure on security practitioners than ever before. As time is of the essence, a well-practiced IR program will be critical. It’s no longer about having a plan in place; it’s about how well it can be executed, which will require many organizations to depart from their current practices.
[...]
How to Align Your Incident Response Practices With the New SEC Disclosure Rules
Robert B. Carleton + ISC2 Central Mississippi President
Post Reply