Srsly Risky Biz: How the SEC's new cyber disclosure rules are shaking out

PLUS: How private sector involvement is key for the CSRB
26 Jan 2024 » Risky Business News

In this podcast Patrick Gray and Tom Uren talk about how the SEC’s new disclosure rules that mean companies have four days to report cyber security incidents once they’ve formally decided that they are material. So far, companies are very much erring on the side of caution.

They also look at the criticism of the CSRB’s board composition. Tom thinks these critiques are misguided. The cyber security landscape is so fractured that if the board were made up of faceless bureaucrats it would get very limited traction.