Wall Street regulator to mandate listed companies spell out cyber risks

Author of the article: WASHINGTON — Wall Street’s watchdog is set to unveil a rule on Wednesday that aims to enhance how public companies disclose when they experience a breach, and how soon. Under the proposed Securities and Exchange Commission (SEC) measures, a company would have to spell out when it experiences a risk and…
Wall Street regulator to mandate listed companies spell out cyber risks

Author of the article:

WASHINGTON — Wall Street’s watchdog is set to unveil a rule on Wednesday that aims to enhance how public companies disclose when they experience a breach, and how soon.

Under the proposed Securities and Exchange Commission (SEC) measures, a company would have to spell out when it experiences a risk and what strategies it has employed to address and manage such risks in current report filings, including Form 8-K.

The rule changes, which are subject to public consultation, would also require an analysis of how the cyber risks are likely to affect the firm’s financials. This would allow investors to assess these risks more effectively, and to locate them more readily, the SEC said.

The changes come a time of growing regulatory concern about how cyber security issues could affect markets and investors. Regulators have warned, for example, of cyber attacks from Russia in retaliation for western sanctions.

President Joe Biden’s administration has also ratcheted up its focus on the issue after a recent series of high-profile cyber attacks on U.S.-based companies.

When companies have an obligation to disclose material information to investors, they must be complete and accurate, SEC chair Gary Gensler said in a statement.

“Their disclosures also should be timely,” he added.

Wednesday’s measure would also require updates in periodic reports to give investors more complete information on previously disclosed, material cybersecurity incidents, the agency said.

The proposals would build on existing SEC cyber risk guidance, which is set to remain in effect, even under the SEC’s new rules, an agency official told reporters.

“How a company might think about the impact (of a breach) to management’s discussion and analysis of financial conditions … should still be taken into consideration,” the official added. (Reporting by Katanga Johnson in Washington Editing by Michelle Price and Chizu Nomiyama)

Financial Post Top Stories

Sign up to receive the daily top stories from the Financial Post, a division of Postmedia Network Inc.

By clicking on the sign up button you consent to receive the above newsletter from Postmedia Network Inc. You may unsubscribe any time by clicking on the unsubscribe link at the bottom of our emails. Postmedia Network Inc. | 365 Bloor Street East, Toronto, Ontario, M4W 3L4 | 416-383-2300

Read More

Total
0
Shares
Leave a Reply

Your email address will not be published.

Related Posts
World Economy Roiled by Simultaneous Shocks Echoing 2007 Anxiety
Read More

World Economy Roiled by Simultaneous Shocks Echoing 2007 Anxiety

The world economy is showing signs of a rapid downshift as it contends with a series of shocks -- some of them self-inflicted by policymakers -- increasing the likelihood of another global recession and the danger of major financial disruptions. Author of the article: Bloomberg News Enda Curran ko08z1iz4k4(nz(ge9jl2(n(_media_dl_1.png Bloomberg RSS (Bloomberg) — The world…