This is another area where we consistently blog because it is a constant issue.  The SEC is now reviewing public companies’ disclosure relating to cyber security risks to determine if additional guidance is needed in this area.

In 2011, the SEC Division of Corporation Finance advised firms to disclose compromises regarding their data security. Since that time, the SEC has reviewed those public company disclosures regarding cybersecurity for compliance with the guidance. The SEC staff also announced that it will disclose its findings on current disclosure practices and overall compliance with the guidance as well as any recommendations.

Cybersecurity is a critical component for those in the securities industry and public companies.  Everyone should expect more pronouncements from the SEC.