SEC Cybersecurity Rule Presents Burden for Health Care Cos.
Privacy and cybersecurity attorneys Bess Hinson and Angad Chopra authored a Law360 article about a recent announcement from the U.S. Securities and Exchange Commission (SEC) regarding the adoption of new cybersecurity rules. The regulations address cybersecurity risk management, strategy, governance and incident disclosure applicable to public companies generally. These newly adopted rules present a set of potentially burdensome obligations on such companies, as well as uncertainty and potentially conflicting regulatory requirements. In this article, the authors provide specific insight on the impact of the SEC's new rules on publicly traded healthcare organizations and how companies should prepare for heightened scrutiny.