Rules that require registrants to disclose experienced material cybersecurity incidents, including annual material information on cybersecurity risk management, strategy, and governance have just been adopted by the SEC. Foreign private issuers will also be required to make comparable disclosures.
With the adopted rules, registrants will, on the new Item 1.05
- nature;