In late July, the Securities and Exchange Commission (SEC) adopted rules that require registered companies to annually report on their cybersecurity risk management, strategy and governance.

As a result of this change, companies will need for Form S-K language that describes their cybersecurity risk management and governance programs. That language must describe the components of the risk management program, the Duty of Care Risk Analysis (DoCRA) process for evaluating cybersecurity risks.

In addition, there is a new requirement that companies must disclose a cybersecurity incident within four days of the determination that it is material.

There is limited time to meet these new requirements as they must be reported in 2023’s financial Form 10-K and Form 20-F disclosures.

Objective
Learn how to meet the new requirements presented in the July 2023 SEC ruling.

Target Audience: C-Suite, Compliance Executives, Investor relations

Language: English
Cost: No Charge

Can't make a live session? Register now and receive a complimentary recording after the live event. For further information, please contact: KN.NAM.Marketing@sgs.com

_1735211606009