The Securities and Exchange Commission (SEC) proposed a rule amendment that would increase requirements of companies when disclosing information about cybersecurity risks and responses to those risks.
The proposed amendment would require, among other things, current reporting about cybersecurity incidents and periodic reporting of updates about previously reported cybersecurity incidents.
Read on for more details.