Lexology July 28, 2023
Squire Patton Boggs

After much anticipation, the Securities and Exchange Commission (the “Commission”) has adopted Regulations (the “Regulations”) regarding public companies’ obligations to include disclosure in annual reports on Form 10-K (Form 20-F for foreign issuers) regarding material cybersecurity risks, risk management and governance, and to file current reports on Form 8-K (for 6-K for foreign issuers) to report material cybersecurity incidents. The Commission adopted many of the reporting requirements proposed in the March 2022 draft of the Regulations and discussed in our prior blog post. Notably, the obligation to disclose information regarding the Board of Directors’ cybersecurity expertise was eliminated from the final Regulations based on feedback from commentors who objected to this requirement. In the coming days, we will publish a...

Today's Sponsors

LEK
ZeOmega

Today's Sponsor

LEK

Continue Reading

 
Topics: Cybersecurity, Employer, Govt Agencies, Health IT, Provider, Regulations, Technology
Related Articles:
Ransomware downtime costs U.S. healthcare organizations $1.9M daily
Forrester on cybersecurity budgeting: 2025 will be the year of CISO fiscal accountability
10 most consequential healthcare data breaches of '24
What To Do If Your Info Leaks In A Data Breach: A 6-Step Recovery Plan
HHS releases notice of HIPAA Security Rule update

Share This Article