https://www.channelfutures.com/wp-content/themes/channelfutures_child/assets/images/logo/footer-new-logo.png
  • Home
  • Technologies
    • Back
    • SDN/SD-WAN
    • Cloud
    • RMM/PSA
    • Security
    • Telephony/UC/Collaboration
    • Cable
    • Mobility & Wireless
    • Fiber/Ethernet
    • Data Centers
    • Backup & Disaster Recovery
    • IoT
    • Desktop
    • Artificial Intelligence
    • Analytics
  • Strategy
    • Back
    • Mergers and Acquisitions
    • Channel Research
    • Business Models
    • Distribution
    • Tech Services Brokerages
    • Sales & Marketing
    • Best Practices
    • Vertical Markets
    • Regulation & Compliance
    • Diversity, Equity & Inclusion
  • MSP 501
    • Back
    • MSP 501 Information Center
    • 2021 MSP 501 Rankings
  • Intelligence
    • Back
    • Galleries
    • Podcasts
    • From the Industry
    • Reports/Digital Issues
    • Webinars
    • White Papers
  • Channel Futures TV
  • EMEA
  • Channel Chatter
    • Back
    • People on the Move
    • New/Changing Channel Programs
    • New Products & Services
    • Industry Honors
  • Resources
    • Back
    • Advisory Boards
    • Industry Organizations
    • Our Sponsors
    • Advertise
    • 2022 Editorial Calendar
  • Awards
    • Back
    • 2021 MSP 501
    • Circle of Excellence
    • DE&I 101
    • Top Gun 51
    • Channel Partners 101 (CP 101)
  • Events
    • Back
    • CP Conference & Expo
    • MSP Summit
    • Channel Partners Europe
    • Channel Partners Event Coverage
    • Webinars
    • Industry Events
  • About Us
  • DE&I
Channel Futures
  • NEWSLETTER
  • Home
  • Technologies
    • Back
    • SDN/SD-WAN
    • Cloud
    • RMM/PSA
    • Security
    • Telephony/UC/Collaboration
    • Cable
    • Mobility & Wireless
    • Fiber/Ethernet
    • Data Centers
    • Backup & Disaster Recovery
    • IoT
    • Desktop
    • Artificial Intelligence
    • Analytics
  • Strategy
    • Back
    • Mergers and Acquisitions
    • Channel Research
    • Business Models
    • Distribution
    • Tech Services Brokerages
    • Sales & Marketing
    • Best Practices
    • Vertical Markets
    • Regulation & Compliance
    • Diversity, Equity & Inclusion
  • MSP 501
    • Back
    • MSP 501 Information Center
    • 2021 MSP 501 Rankings
  • Intelligence
    • Back
    • Galleries
    • Podcasts
    • From the Industry
    • Reports/Digital Issues
    • Webinars
    • White Papers
  • Channel Futures TV
  • EMEA
  • Channel Chatter
    • Back
    • People on the Move
    • New/Changing Channel Programs
    • New Products & Services
    • Industry Honors
  • Resources
    • Back
    • Advisory Boards
    • Industry Organizations
    • Our Sponsors
    • Advertise
    • 2022 Editorial Calendar
  • Awards
    • Back
    • 2021 MSP 501
    • Circle of Excellence
    • DE&I 101
    • Top Gun 51
    • Channel Partners 101 (CP 101)
  • Events
    • Back
    • CP Conference & Expo
    • MSP Summit
    • Channel Partners Europe
    • Channel Partners Event Coverage
    • Webinars
    • Industry Events
  • About Us
  • DE&I
    • Newsletter
  • REGISTER
  • MSPs
  • VARs / SIs
  • Agents
  • Cloud Service Providers
  • Channel Partners Events
 Channel Futures

MSSP Insider


Shutterstock

Cloaked hacker

SEC Proposal Would Impose Stricter Timeline for Public Companies Reporting Cyberattacks

  • Written by Edward Gately
  • March 14, 2022
Faster reporting isn't necessarily better reporting.

A U.S. Securities and Exchange Commission (SEC) proposal would require public companies to report data breaches and other cybersecurity incidents within four days of discovery.

According to newly proposed amendments to existing rules, listed companies would have to provide information in periodic report filings on policies, implemented procedures and the measures taken to identify and manage cybersecurity risks. The amended rules would also instruct companies to provide updates regarding previously reported security breaches.

Gary Gensler is SEC chair.

SEC's Gary Gensler

SEC’s Gary Gensler

“Over the years, our disclosure regime has evolved to reflect evolving risks and investor needs,” he said. “Today, cybersecurity is an emerging risk with which public issuers increasingly must contend. Investors want to know more about how issuers are managing those growing risks. A lot of issuers already provide cybersecurity disclosure to investors. I think companies and investors alike would benefit if this information were required in a consistent, comparable and decision-useful manner.”

Not All Cyberattacks are Equal

Joseph Carson is chief security scientist and advisory CISO at Delinea. He said the SEC proposal reinforces the importance of being incident response ready. It also emphasizes a solid backup and recovery strategy.

Delinea's Joseph Carson

Delinea’s Joseph Carson

“The proposals, however, appear to treat data breaches and cybersecurity incidents all equally rather than as risk-based, which is a big surprise,” he said. “We know that the impact and severity of data breaches and cybersecurity incidents can vary significantly depending on the scale and type of data impacted. Organizations are really going to need to ramp up their incident response plans to be incident response ready as many organizations even after four days of discovering a data breach are still trying to identify the impact. So reporting an incident at the same time will require quick incident response capabilities.”

Post-incident response and reporting are critically important, Carson said. And when security controls fail to prevent attacks, businesses must look to the incident response and recovery capabilities to get the business back and running.

“In addition to incident response, a strong backup strategy that reduces risks from ransomware combined with a solid privileged access security solution and use of multifactor authentication (MFA) wherever and whenever possible will make it more difficult for attackers to be successful in the future,” he said.

Good Move by SEC

Ray Kelly is fellow at NTT Application Security. He said the SEC proposal is a good move to standardize breach reporting and procedures for publicly traded companies and hold them accountable.

WhiteHat Security's Ray Kelly

WhiteHat Security’s Ray Kelly

“The current policies – which do not specify a timeframe to report cybersecurity incidents to the public – have essentially allowed companies to disclose this critical information on their own merit, which could affect stock price or mergers and acquisitions,” he said.

Casey Ellis is Bugcrowd‘s founder and CTO. He said the SEC proposal is …

  • Page 1
  • Page 2
Tags: MSPs Analytics Backup & Disaster Recovery Best Practices MSSP Insider Regulation & Compliance Security

Most Recent


  • customer experience - cx
    Build Customers for Life with CX and Lifecycle Selling
    Companies that offer a good customer experience are more likely to see their revenue grow faster than those that don't make CX a top priority.
  • Cybersecurity challenges
    Unprecedented Times Impacting Cybersecurity Channel Partners
    Channel leaders have to adapt to changes in market routes.
  • Best practices
    AWS Security Best Practices: A Baker's Dozen for Success in the Cloud
    From implementing the principle of least privilege to cloud workload protection, following these tips makes for a more secure cloud infrastructure.
  • Making Waves
    8 Channel People Making Waves This Week at Avant, Cisco, Databricks, More
    We reported on the same story three times this week because of its importance to the channel. Can you guess which topic?

Leave a comment Cancel reply

-or-

Log in with your Channel Futures account

Alternatively, post a comment by completing the form below:

Your email address will not be published. Required fields are marked *

Related Content

  • Russia Stop Sign
    The Gately Report: Fortinet Ceases Russia Operations, Talks Growth with Partners, Kaspersky Rebuffs German Warning
  • High-Wire-Still
    High Wire Networks Expands Overwatch with Prevention Suite
  • Russia-Ukraine Conflict
    Check Point, Sophos, Trend Micro Among Cybersecurity Providers Responding to Ukraine Crisis
  • Ukraine flag
    The Gately Report: Proofpoint Tracking Ukraine Crisis for Partners, Customers; New Darktrace Division

Upcoming Events

View all

Channel Partners Europe

June 14, 2022 - June 15, 2022

MSP Summit

September 13, 2022 - September 16, 2022

Galleries

View all

Unprecedented Times Impacting Cybersecurity Channel Partners

May 16, 2022

8 Channel People Making Waves This Week at Avant, Cisco, Databricks, More

May 13, 2022

Talent Shortage Ripple Effects Continue to Create Headaches for Partners

May 13, 2022

Industry Perspectives

View all

Build Customers for Life with CX and Lifecycle Selling

May 16, 2022

Voice Analytics Are a Must-Have as Companies Evolve COVID-Rushed Tech

May 12, 2022

Top 5 Trends and Challenges Channel Partners Are Facing in 2022

May 9, 2022

Webinars

View all

Simplifying SaaS Security for MSPs

April 27, 2022

How to Supercharge The Network to Support Your IT Superhero Moves

May 3, 2022

The 2022 MSP Challenge: Scale Service Delivery Despite the Talent Gap

April 21, 2022

White Papers

View all

The New Bottom Line: How MSPs Can Meet the Healthcare Crisis While Evolving Their Businesses

April 19, 2022

How to build a Security Operations Center (on a budget)

April 4, 2022

The AT&T Cybersecurity Incident Response Toolkit

April 4, 2022

Channel Futures TV

View all

AT&T, Microsoft, Cisco, ThreatLocker on Unlocking Partner Potential

Agents Share ‘Secrets,’ Industry Opportunity

May 11, 2022

Vonage Addresses Potential Partner Opportunity via Acquisition by Ericsson

May 5, 2022

Lumen Technologies ‘Built for Growth and Scale’

May 4, 2022

Twitter

ChannelFutures

How to build and provide a great customer experience. #CX #ChannelPartners @IngramMicroInc dlvr.it/SQTrfh https://t.co/RsAA2Lliek

May 16, 2022
ChannelFutures

[email protected] global channel chief Rodney Clark made the surprise announcement he is leaving his position just one ye… twitter.com/i/web/status/1…

May 16, 2022
ChannelFutures

.@SAP touts growth of Rise with SAP at #SAPSapphireOrlando dlvr.it/SQTCs5 https://t.co/J2LrQrYlNQ

May 16, 2022
ChannelFutures

#CPExpo #cybersecurity roundtable discusses unprecedented times for channel chiefs, partners. @Sophos, @Fortinet,… twitter.com/i/web/status/1…

May 16, 2022
ChannelFutures

Being #cybersecurity proactive about the threat landscape makes a better #cloudcomputing strategy, says… twitter.com/i/web/status/1…

May 16, 2022
ChannelFutures

As many MSPs deal with continuing hiring shortages, there is a growing need to find and retain the right talent.… twitter.com/i/web/status/1…

May 13, 2022
ChannelFutures

New Charter is focusing on the entrepreneur journey and has a unique snap-up model/strategy. dlvr.it/SQK8Jn https://t.co/kZ69jpi4AA

May 13, 2022
ChannelFutures

Free Live DE&I Webinar: “Shared Language: Inclusion Culture’s Secret Weapon” dlvr.it/SQK1bt https://t.co/837MHLLgG1

May 13, 2022

MSSP Insider

Business advice for MSSPs and news from the broader security channel.

Newsletters and Updates

Sign up for The Channel Report, Channel Futures Update, MSP 501 Newsletter and more.

Live Channel Events

Get the latest information on the next industry-leading Channel Partners event.

Galleries

Educational slide shows and images from live events.

Media Kit And Advertising

Want to reach our audience? Access our media kit.

DISCOVER MORE FROM INFORMA TECH

  • Channel Partners Events
  • Telecoms.com
  • MSP 501
  • Black Hat
  • IoT World Today
  • Omdia

WORKING WITH US

  • Contact
  • About Us
  • Advertise
  • Newsletter

FOLLOW Channel Futures ON SOCIAL

  • Privacy
  • CCPA: “Do Not Sell My Data”
  • Cookie Policy
  • Terms
Copyright © 2022 Informa PLC. Informa PLC is registered in England and Wales with company number 8860726 whose registered and Head office is 5 Howick Place, London, SW1P 1WG.
This website uses cookies, including third party ones, to allow for analysis of how people use our website in order to improve your experience and our services. By continuing to use our website, you agree to the use of such cookies. Click here for more information on our Cookie Policy and Privacy Policy.
X