All Articles

sec (8)

SEC Will Require Finance to Notify Breach Victims in 30 Days

Posted by Matthew Rosenquist on May 20, 2024 at 10:12am in Blog

More SEC rules, this time mandating financial firms inform victims of data breaches within 30 days!

Why wasn't this already a requirement?

Last year, the SEC instituted requirements for publicly traded companies to inform investors of material cybersec

The Cybersecurity Vault #27 - Incident Materiality and Meeting New SEC Requirements with Malcolm Harkins

Posted by Matthew Rosenquist on February 12, 2024 at 3:40pm in Podcast

Incident Materiality and Meeting New SEC Requirements

SEC Case Against SolarWinds – Has the SEC Gone Too Far?

Posted by Matthew Rosenquist on December 20, 2023 at 6:20am in Podcast

The SEC case against SolarWinds and their CISO continues to reverberate across the cybersecurity community. I talk with Edward Amoroso, the Founder and CEO of TAG Infosphere, to discuss different aspects of the case and recent SEC requirements for di

SEC Cybersecurity Disclosure Rules Take Effect

Posted by Matthew Rosenquist on December 18, 2023 at 9:08am in Blog

SEC cybersecurity disclosure requirements take effect today

SEC Case Against SolarWinds Overview - The Rant You Have Been Waiting For

Posted by Matthew Rosenquist on November 30, 2023 at 5:36pm in Podcast

The SEC case against SolarWinds and their CISO has opened a hornet’s nest and half of the cybersecurity community is up in arms, claiming that the SEC is unfairly making CISOs the scapegoats, when they are only trying to do their difficult job. WRONG