Adopted in July 2023, the US Securities and Exchange Commission (SEC)’s cybersecurity disclosure rules require public companies to report material cybersecurity incidents on Form 8-K and to annually report on their cybersecurity risk management and governance.
However, recent developments – including SEC Chair Paul S. Atkins’s appointment in April 2025
Continue Reading The future of the SEC’s cybersecurity disclosure rules