As public companies’ reliance on remote work, cloud computing and digital payments increases, so too does the cybersecurity risk. Recognizing this, the SEC finalized rules and regulations in September 2023 requiring new cybersecurity-related disclosures from public companies. In prior efforts to improve consistency and accuracy of public company cybersecurity risk disclosures, the SEC issued interpretive guidance explaining how cybersecurity risk and incidents should be communicated based on longstanding requirements to disclose material information periodically to shareholders. But in the SEC’s view, corporate disclosure practices were inconsistent. Under-disclosure persisted and investors lacked consistent information by which they could evaluate public companies’ cybersecurity risk.    

The SEC now requires enhanced and standardized cybersecurity risk disclosures for all periodic SEC filers, including foreign private issuers and smaller reporting companies. Public companies must disclose certain cybersecurity incidents, as well as information about cybersecurity risk management, strategy and governance.

Read on to learn about the potential exposure public companies face and how this exposure risk fits within the framework of a company’s D&O and cyber insurance programs. How can a company ensure its insurance policies will appropriately protect its balance sheet and its directors and officers from potential SEC investigations and shareholder litigation?

Read more
Print:
Email this postTweet this postLike this postShare this post on LinkedIn
Photo of Emma Leonelli Emma Leonelli

Emma is an associate in the Pittsburgh office focusing her practice on complex commercial litigation, financial services litigation, employment litigation, and insurance recovery. Emma’s experience includes handling all aspects of litigation in both state and federal court, as well as before arbitral panels…

Emma is an associate in the Pittsburgh office focusing her practice on complex commercial litigation, financial services litigation, employment litigation, and insurance recovery. Emma’s experience includes handling all aspects of litigation in both state and federal court, as well as before arbitral panels across the United States.

Read more about Emma Leonelli
Show more Show less
Photo of Shelby S. Guilbert Jr. Shelby S. Guilbert Jr.

Shelby represents businesses, financial institutions, and healthcare providers in insurance recovery actions, high-stakes contract disputes and cross-border litigation. He has recovered over a billion dollars from insurance companies in the U.S. and international markets on behalf of his policyholder clients.

Read more about Shelby S. Guilbert Jr.
Photo of Nicholas G. Hill Nicholas G. Hill

Nicholas helps businesses and financial institutions navigate complex disputes with their insurance carriers. He has recovered hundreds of millions of dollars in insurance proceeds on behalf of businesses and financial institutions in policyholder insurance coverage disputes as a result of the successful resolution…

Nicholas helps businesses and financial institutions navigate complex disputes with their insurance carriers. He has recovered hundreds of millions of dollars in insurance proceeds on behalf of businesses and financial institutions in policyholder insurance coverage disputes as a result of the successful resolution of litigation and pre-litigation claims. He represents policyholders in all types of first- and third-party insurance claims, including under cyber, CGL, D&O, E&O/professional liability, EPL, fidelity and crime, political risk, product recall, property damage / business interruption, R&W, and other manuscript lines of coverage.

Read more about Nicholas G. Hill
Show more Show less
Photo of David Hirsch David Hirsch

Dave is a highly respected member of the securities enforcement and regulatory counseling practice group at McGuireWoods, where he plays a key role shaping the strategic direction of the firm’s securities enforcement initiatives. Before joining McGuireWoods, Dave was Chief of the Crypto Assets…

Dave is a highly respected member of the securities enforcement and regulatory counseling practice group at McGuireWoods, where he plays a key role shaping the strategic direction of the firm’s securities enforcement initiatives. Before joining McGuireWoods, Dave was Chief of the Crypto Assets and Cyber Unit in the SEC Division of Enforcement, and prior to that served as enforcement counsel to SEC Commissioner Crenshaw. He is a recognized expert and frequent speaker with a robust practice that spans a wide array of complex regulatory and enforcement matters, particularly those involving crypto and cyber.

Read more about David Hirsch
Show more Show less
Related Posts
Broad Interpretation of CCPA’s Private Right of Action Increases Business Risk to Tracking Technologies Lawsuits
May 9, 2025
CFPB Explores the Need for Greater Financial Privacy
February 3, 2025
HHS Proposed Rule May Enhance HIPAA Security but Leaves AI Questions Open
January 24, 2025