Proposed U.S. Securities and Exchange Commission cybersecurity rules would provide some much-needed standardization for companies seeking to determine how much and when to reveal cyber-related intrusions to their investors, experts say.
It is unclear what impact the rules would have on cyber or directors and officers liability rates.
. . .
There are companies that have been “investing in cyber security for a long time,” and large financial institutions are likely to be ready as well as other large, publicly held companies, said Joshua Gold, a shareholder with Anderson Kill P.C. in New York.
But other companies might not “fully appreciate how bad the risk environment is right now” and have not made it a top priority, he said.
To read the full article, please click here.