Artwork

内容由Olivia Duffey and BDO USA提供。所有播客内容(包括剧集、图形和播客描述)均由 Olivia Duffey and BDO USA 或其播客平台合作伙伴直接上传和提供。如果您认为有人在未经您许可的情况下使用您的受版权保护的作品,您可以按照此处概述的流程进行操作https://zh.player.fm/legal
Player FM -播客应用
使用Player FM应用程序离线!

What May the SEC’s Proposed Cybersecurity Disclosure Rules Mean for Those in Governance Oversight Positions?

26:27
 
分享
 

Manage episode 332355708 series 2910096
内容由Olivia Duffey and BDO USA提供。所有播客内容(包括剧集、图形和播客描述)均由 Olivia Duffey and BDO USA 或其播客平台合作伙伴直接上传和提供。如果您认为有人在未经您许可的情况下使用您的受版权保护的作品,您可以按照此处概述的流程进行操作https://zh.player.fm/legal

Join BDO's Center for Corporate Governance Amy Rojik as she and her colleague Mike Stiglianese, who serves as the Managing Director in BDO Consulting’s Technology Advisory Services Practice, discuss the SEC’s recently proposed rules on cybersecurity risk management, strategy, governance and incident disclosure and the impacts and considerations these rules may have on those charged with governance.

Key Takeaways:

  • The SEC proposed cybersecurity disclosure rules are intended to formalize currently expected disclosures around aspects of cybersecurity that are useful to investors
  • The board will be required to provide disclosure about the cyber expertise that exists within the organization’s governance structure
  • Cybersecurity should be thought of and treated as necessary risk management processes and procedures
  • Cyber incident response plans need to be planned in advanced, involve key stakeholders, be well thought out and practiced and be adjusted continually to reflect the changing risk landscape
  • Documentation by the organization of the cyber risk management program is critical – including the identification, protection and disposal of data – along with testing of the program
  • Process and metrics shared with the board needs to be at the right level – By analogy: The audit committee wants to see the financial statements not the general ledger…

Resources:

  continue reading

83集单集

Artwork
icon分享
 
Manage episode 332355708 series 2910096
内容由Olivia Duffey and BDO USA提供。所有播客内容(包括剧集、图形和播客描述)均由 Olivia Duffey and BDO USA 或其播客平台合作伙伴直接上传和提供。如果您认为有人在未经您许可的情况下使用您的受版权保护的作品,您可以按照此处概述的流程进行操作https://zh.player.fm/legal

Join BDO's Center for Corporate Governance Amy Rojik as she and her colleague Mike Stiglianese, who serves as the Managing Director in BDO Consulting’s Technology Advisory Services Practice, discuss the SEC’s recently proposed rules on cybersecurity risk management, strategy, governance and incident disclosure and the impacts and considerations these rules may have on those charged with governance.

Key Takeaways:

  • The SEC proposed cybersecurity disclosure rules are intended to formalize currently expected disclosures around aspects of cybersecurity that are useful to investors
  • The board will be required to provide disclosure about the cyber expertise that exists within the organization’s governance structure
  • Cybersecurity should be thought of and treated as necessary risk management processes and procedures
  • Cyber incident response plans need to be planned in advanced, involve key stakeholders, be well thought out and practiced and be adjusted continually to reflect the changing risk landscape
  • Documentation by the organization of the cyber risk management program is critical – including the identification, protection and disposal of data – along with testing of the program
  • Process and metrics shared with the board needs to be at the right level – By analogy: The audit committee wants to see the financial statements not the general ledger…

Resources:

  continue reading

83集单集

所有剧集

×
 
Loading …

欢迎使用Player FM

Player FM正在网上搜索高质量的播客,以便您现在享受。它是最好的播客应用程序,适用于安卓、iPhone和网络。注册以跨设备同步订阅。

 

快速参考指南