SEC's New Cybersecurity Risk Management, Strategy, Governance and Incident Disclosure Rules
Holland & Knight and Simmons & Simmons hosted an interactive program designed to enhance clients' understanding of the U.S. Securities and Exchange Commission's (SEC) new Cybersecurity Risk Management, Strategy, Governance and Incident Disclosure rules, and the impact on public companies, including foreign private issuers.
In this program, Holland & Knight Partners Shardul Desai and Ira Rosner, along with Simmons & Simmons Partners Emily Jones and Robert Allen, explained how the four-day public disclosure requirement will affect incident response practices and internal disclosure controls and procedures. The presentation also explored the challenges in coordinating regulatory disclosures in Europe under the General Data Protection Regulation (GDPR) with the SEC's public disclosure requirement in the United States. In addition, the attorneys highlighted the practical implications of cybersecurity risk management programs and governance practices disclosure requirements.