While the U.S. Securities and Exchange Commission’s (SEC) Cybersecurity Disclosure Rules may appear daunting, compliance is achievable. While the focus of the new Rules is on public companies, the impacts will be felt by nonpublic companies as well.
Join us on Wednesday, October 11, 2023 — in-person or live-streaming — at the next Midwest Cyber Security Alliance (MCSA) meeting, where sponsors HALOCK Security Labs and Foley & Lardner LLP will give you the combined legal and cyber risk management perspective. Know the dates of compliance. Understand the disclosure obligations. Identify steps to take and existing documents to leverage.
さらに詳しく
Companies should think about this new rulemaking as being akin to Sarbanes-Oxley in that they will need to implement measurable cybersecurity risk management practices and controls from bottom-to-top-and-back to support new disclosure requirements. As a result, the risk of not meeting certain cybersecurity standards may come from the street, as well as regulators. The rules require that companies disclose their cybersecurity practices and incidents, not that they meet a specific standard of care, such as NIST 800-53 or CIS Controls.
At a high level, the new rules require the following:
- Disclosure in annual reports about your processes to assess, identify, and manage cybersecurity threats.
- New Form 8-K disclosure around material cybersecurity incidents.
- Disclosure of how your board of directors and executives identify and manage cybersecurity risks.
- Consideration of cybersecurity threats in terms of materiality — qualitative and quantitative — both to the organization and to others who might be harmed.
We look forward to a lively discussion of this rule and seeing how MCSA members are approaching efforts to comply.
参加方法2つ
In addition to welcoming local attendees to the scenic 40th floor of our Milwaukee office, we are pleased to continue offering a virtual option for those not able to attend in person.
To register, click here and select in-person or virtual attendance. There is no fee to attend this event, but advance registration is required.
CLE
認定申請は、CO州、FL州、NY州、WI州(50分単位)およびCA州、IL州、TX州、UT州、VA州(60分単位)に対し、最大1.50クレジット時間分提出されます。他の管轄区域でクレジット取得を希望する参加者には、統一出席証明書が提供されます。
フォーリー&ラードナー法律事務所は、カリフォルニア州、コロラド州、イリノイ州、ニューヨーク州、テキサス州、ユタ州のMCLEプロバイダーとして認可されています。
For purposes of New York CLE credit, this program is appropriate for experience attorneys only. Certificates of attendance will be distributed to eligible participants approximately eight weeks after the program via email. For questions regarding CLE, please email [email protected].
対面参加者の注意事項:
CLE単位を取得するには、会場で配布されるCLE出席確認書に必要事項を全て記入し署名の上、プログラム終了前に受付テーブルへご提出ください。遅刻・早退・全日程参加のいずれの場合でも、必ず入室時刻と退室時刻を記入してください。
Important Information for New York / New Jersey Attorneys: Per recent New York State Bar requirements, when you return your completed CLE Attendance Form to the registration table upon leaving the program, you must also have Foley staff review and initial your form to verify your attendance.
Remote attendee instructions:
To be eligible for CLE credit, you will need to be logged into the Microsoft Teams meeting for the full duration of the live event; credit may not be obtained by viewing and/or listening to a program recording after the event. Your first and last names must also be entered upon joining the meeting and displayed throughout the program. Additionally, you will need to complete and return the Attorney Affirmation Form that will be made available.
CPE
本プログラムは、CISA、CISM、CGEIT、および/またはCRISC認定資格の取得および維持に向けた継続的プライバシー教育(CPE)単位の対象となる可能性があります。 ご自身の認定資格(CISA、CISM、CGEIT、CRISC)における具体的なCPE要件を確認し、本プログラムで取り上げられるトピックが該当資格の職務実践領域のいずれかと合致するか否かについては、ISACAウェブサイトをご参照ください。対象と認められた場合、自己申告用の「ISACA受講証明書」が提供されます。
