In a world where cyber incidents are becoming increasingly more complex and frequent, public companies are navigating a challenging digital landscape. The Securities and Exchange Commission (SEC) has intensified its focus on how organizations manage and disclose these cyber incidents. This shift toward more stringent regulatory oversight requires robust cybersecurity governance and transparent reporting practices, prompting companies to strengthen their risk management strategies.
Recent findings from the QBE 2024 Cyber Insurance Report highlight the prevalent nature of cyber threats, with more than 60% of surveyed risk professionals reporting that they had experienced a cyber event. The report also found that while risk transfer remains a primary concern, the proactive and preventive aspects of cyber insurance—such as incident response planning and breach response services—are not being fully utilized. For public companies, these findings are particularly significant as it highlights the critical need for comprehensive cyber insurance that aligns with regulatory expectations, enhancing cyber preparedness and resilience.
The SEC has revised its approach in…
