The US Securities and Exchange Commission’s proposed rule to enhance and standardize Cybersecurity Risk Management, Strategy, Governance, and Incident Disclosure by public companies is in its final stage. Key provisions require mandatory reporting of a material cybersecurity incident within four business days, updated disclosures on previously disclosed incidents, annual descriptions of policies for identifying and managing cybersecurity risks, and disclosures of board member cybersecurity expertise.
This webinar, intended for attorneys and other professionals who manage corporate cybersecurity risk and disclosures, will provide an overview of legal issues associated with the SEC’s upcoming rule. Our panelists will break down the key provisions impacting how companies manage and report on cybersecurity risks and the required timely disclosures to shareholders.
Learning Objections include:
- Understand the key provisions of the SEC’s proposed cybersecurity risk governance rule
- Obtain insight into advising clients on how best to implement new requirements in coordination with their information technology departments
- Identify key considerations for advising boards and company management on risks associated with making required disclosures
- In-house and law firm counsel who advise companies on cybersecurity risk management
- Compliance, privacy, and information technology professionals who advise on cybersecurity risk
- Corporate counsel who manage SEC filings and advise on general corporate governance matters.
SEC's New Cybersecurity Governance Rule: How Companies Can Prepare Their Board for Change
Webinar Date/Time:
August 16, 2023
1:00 PM EDT •12:00 PM CDT •11:00 AM MDT •10:00 AM PDT
Register Now!
Cost:
Free
Credit:
1 CLE credit most states.
Speakers:
Free
Credit:
1 CLE credit most states.
Speakers:
- Moderator: Kate Azevedo is a Legal Analyst on the Corporate Analysis team, with a focus on corporate governance. Prior to working at Bloomberg Law, Kate served as in-house counsel at a clinical research practice and as a director at a legal nonprofit organization. Kate is a licensed attorney in the District of Columbia who previously represented small business clients and consulted on technical commercial matters.
- Victoria Beckman is an Associate General Counsel for privacy and security at Shopify. Before joining Shopify, she was Leader for the Americas of the Digital Crimes Unit (DCU) at Microsoft. Victoria holds a Certified Information Privacy Manager (CIPM) and Certified Information Privacy Professional US (CIPP-US) certification by the International Association of Privacy Professionals (IAPP). Prior to practicing law, Victoria was an industrial engineer in the technology and automotive sectors and a competitive figure skater for her native country, Colombia.
- Jordan Rae Kelly is a Senior Managing Director and the Head of Cybersecurity for the Americas at FTI Consulting. Jordan has more than 15 years of experience coordinating incident response and managing cyber policy planning. At FTI Consulting, she advises clients on a broad range of cybersecurity and data privacy matters involving breaches, insider threats, intellectual property, crisis communications, vendor management, compliance, regulation, risk management, and forensic investigations. Prior to joining FTI Consulting, Jordan served as the Director for Cyber Incident Response on the National Security Council at the White House, and prior to that, as Chief of Staff and Chief of Strategic Initiatives in the Federal Bureau of Investigation’s (FBI) Cyber Division, where she managed daily operations and strategic and policy planning for the FBI’s national cyber program.
- Dan Pepper is a partner at Norton Rose Fulbright US LLP advising clients on proactive data privacy and security practices, data breach incident response and regulatory compliance. Dan is highly knowledgeable in identifying, evaluating and managing risks associated with privacy and information security practices with more than 25 years of experience in data privacy, cybersecurity and information technology law, including leadership roles at Fortune 50 public companies. He also supports clients on compliance with domestic and international security laws, regulations and standards, including PCI-DSS, the NIST and ISO. He is proficient at structuring technology acquisitions, licensing and distribution arrangements, as well as cloud-based/SaaS transactions. With his substantial industry knowledge, Dan has drafted and negotiated thousands of technology and intellectual property-based transactions.
No comments:
Post a Comment