New Cybersecurity Reporting Rules
This event covered the new rules that expand cybersecurity compliance obligations by different entities through a PowerPoint presentation delivered by Thu Nguyen (professor and academic advisor of the ITACS program). This event occurred from 3:30 p.m. until 4:30 p.m. on Wednesday, October 25th, through Zoom and was sponsored by Temple University. Thanks to this event, I learned that the SEC (The Securities and Exchange Commission) is enacting new rules in response to the increasing attacks and risks impacting companies, investors, and consumers. The newly implemented rules intend to standardize disclosures on cybersecurity incidents and internal control. These rules are concerned with cybersecurity risk management, strategy, and governance. These rules require companies to disclose cybersecurity threats within four days of occurrence and provide details about the incident’s nature, scope, and timing, as well as the process of identifying, assessing, and managing the risk resulting from cybersecurity threats.