Preparing for New Cybersecurity Disclosures

Preparing for New Cybersecurity Disclosures

Client Alert

Public companies will soon be required to provide increased transparency about cybersecurity incidents, risk management, strategy and governance as a result of new rules adopted by the Securities and Exchange Commission (the “SEC” or “Commission”) on July 26, 2023. These new disclosure requirements represent a significant expansion of the existing SEC disclosure guidance, which dates back to 2011 and 2018, and represent the SEC’s first disclosure requirements explicitly referring to cybersecurity risk and incident reporting in current and periodic reports.

Following an overview of the new rules, we identify practical considerations for registrants in preparing for the new disclosure requirements.

Read the full alert.



Unless you are an existing client, before communicating with WilmerHale by e-mail (or otherwise), please read the Disclaimer referenced by this link.(The Disclaimer is also accessible from the opening of this website). As noted therein, until you have received from us a written statement that we represent you in a particular manner (an "engagement letter") you should not send to us any confidential information about any such matter. After we have undertaken representation of you concerning a matter, you will be our client, and we may thereafter exchange confidential information freely.

Thank you for your interest in WilmerHale.