Wall Street's Top Regulator on Wednesday released Updated Guidance on how Public Companies should go about Disclosing Cybersecurity Breaches and "Risks" to the Public.
The Securities and Exchange Commission's (SEC) New Guidance says Companies should Inform Investors about Cybersecurity Risks, even if they have not yet been Targeted by Hackers in a Cyberattack.
It also stresses that Companies Publicly Disclose Breaches in a timely fashion, and instructs Firms to take Steps to Prevent Executives and others with previous Knowledge of a Breach from Trading in its Securities before the Information is made Public.
The New Guidance comes after Credit Reporting Firm Equifax attracted massive Scrutiny in Washington and across the Country for a Breach that impacted more than 145 Million American Consumers. Equifax discovered the Breach internally at the end of July but did not publicly Disclose it until September.
The Company has also been scrutinized over Reports that Top Executives Sold Shares in the Company in the days after the Breach was discovered. The Company has cleared the Employees of wrongdoing, saying that an Internal Investigation revealed they had No Knowledge of the Breach when they made the Trades.
SEC Chairman Jay Clayton said Wednesday he hopes the Updated Guidance "will promote clearer and more robust disclosure by companies about cybersecurity risks and incidents, resulting in more complete information being available to investors."
"In particular, I urge public companies to examine their controls and procedures, with not only their securities law disclosure obligations in mind, but also reputational considerations around sales of securities by executives," Clayton said.
The so-called Interpretive Guidance released Wednesday States that it is "critical that public companies take all required actions to inform investors about material cybersecurity risks and incidents in a timely fashion, including those companies that are subject to material cybersecurity risks but may not yet have been the target of a cyber-attack."
NYC Wins When Everyone Can Vote! Michael H. Drucker
No comments:
Post a Comment