Earlier this year the United States Securities and Exchange Commission (SEC) released a proposed cybersecurity disclosure rule to advance risk management and governance towards the treatment of cyber risk.
To quote the SEC:
“The Securities and Exchange Commission (“Commission”) is proposing rules to enhance and standardize disclosures regarding cybersecurity risk management, strategy, governance, and cybersecurity incident reporting by public companies that are subject to the reporting requirements of the Securities Exchange Act of 1934. Specifically, we are proposing amendments to require current reporting about material cybersecurity incidents. We are also proposing to require periodic disclosures about a registrant’s policies and procedures to identify and manage cybersecurity risks, management’s role in implementing cybersecurity policies and procedures, and the board of directors’ cybersecurity expertise, if any, and its oversight of cybersecurity risk.”
These recent developments heighten attention on the management and disclosure of cyber risks and incidents by public companies. They also underscore the importance of advancing risk management and governance efforts across the boardroom community that ensures resources and investments are applied to those cyber risks that have the most material financial, business, and operational impact.
CHALLENGES FACING THE CYBERSECURITY COMMUNITY & BOARD DIRECTORS
WHAT ATTENDEES WILL WALK AWAY WITH
In this session, we are joined by industry experts including Chris Hetner, Senior Cyber Risk Advisor to the National Association of Corporate Directors and former Senior Cybersecurity Advisor to the Chair of the United States SEC, X-Analytics CEO and Founder John Frazzini, and the VP of the Americas for Prophecy International (ASX:PRO), John Pappas.
The event will kick off with a state of the industry and Forrester research insights from special guest Forrester Senior Analyst Heath Mullins.
What attendees of the session will takeaway:
- A deeper understanding of recent SEC developments and what they mean for the cybersecurity community and board directors across the United States
- Ways companies can prepare now for the specifics of the expected SEC cybersecurity rules and reporting obligations
- How organizations can contextualize cyber risks and incidents to business, financial and operational impact; including advancements in how X-Analytics is applied across the enterprise
- The cyber technology companies should prioritize and best practices for preparing an enterprise for emerging reporting obligations
Guest Speaker | Forrester Senior Analyst
Heath is a senior analyst at Forrester, advising security and risk (S&R) professionals and government agencies about cybersecurity topics like building resilient infrastructure, preventing threats, and implementing Zero Trust. His research focuses on US government cybersecurity strategy, network analysis and visibility (NAV), secure web gateway (SWG), deception technology, deception technology, and Zero Trust edge (ZTE).
Former Senior Cybersecurity Advisor to the Chair of the United States Securities and Exchange Commission