Artwork

Innhold levert av Olivia Duffey and BDO USA. Alt podcastinnhold, inkludert episoder, grafikk og podcastbeskrivelser, lastes opp og leveres direkte av Olivia Duffey and BDO USA eller deres podcastplattformpartner. Hvis du tror at noen bruker det opphavsrettsbeskyttede verket ditt uten din tillatelse, kan du følge prosessen skissert her https://no.player.fm/legal.
Player FM - Podcast-app
Gå frakoblet med Player FM -appen!

What May the SEC’s Proposed Cybersecurity Disclosure Rules Mean for Those in Governance Oversight Positions?

26:27
 
Del
 

Manage episode 332355708 series 2910096
Innhold levert av Olivia Duffey and BDO USA. Alt podcastinnhold, inkludert episoder, grafikk og podcastbeskrivelser, lastes opp og leveres direkte av Olivia Duffey and BDO USA eller deres podcastplattformpartner. Hvis du tror at noen bruker det opphavsrettsbeskyttede verket ditt uten din tillatelse, kan du følge prosessen skissert her https://no.player.fm/legal.

Join BDO's Center for Corporate Governance Amy Rojik as she and her colleague Mike Stiglianese, who serves as the Managing Director in BDO Consulting’s Technology Advisory Services Practice, discuss the SEC’s recently proposed rules on cybersecurity risk management, strategy, governance and incident disclosure and the impacts and considerations these rules may have on those charged with governance.

Key Takeaways:

  • The SEC proposed cybersecurity disclosure rules are intended to formalize currently expected disclosures around aspects of cybersecurity that are useful to investors
  • The board will be required to provide disclosure about the cyber expertise that exists within the organization’s governance structure
  • Cybersecurity should be thought of and treated as necessary risk management processes and procedures
  • Cyber incident response plans need to be planned in advanced, involve key stakeholders, be well thought out and practiced and be adjusted continually to reflect the changing risk landscape
  • Documentation by the organization of the cyber risk management program is critical – including the identification, protection and disposal of data – along with testing of the program
  • Process and metrics shared with the board needs to be at the right level – By analogy: The audit committee wants to see the financial statements not the general ledger…

Resources:

  continue reading

83 episoder

Artwork
iconDel
 
Manage episode 332355708 series 2910096
Innhold levert av Olivia Duffey and BDO USA. Alt podcastinnhold, inkludert episoder, grafikk og podcastbeskrivelser, lastes opp og leveres direkte av Olivia Duffey and BDO USA eller deres podcastplattformpartner. Hvis du tror at noen bruker det opphavsrettsbeskyttede verket ditt uten din tillatelse, kan du følge prosessen skissert her https://no.player.fm/legal.

Join BDO's Center for Corporate Governance Amy Rojik as she and her colleague Mike Stiglianese, who serves as the Managing Director in BDO Consulting’s Technology Advisory Services Practice, discuss the SEC’s recently proposed rules on cybersecurity risk management, strategy, governance and incident disclosure and the impacts and considerations these rules may have on those charged with governance.

Key Takeaways:

  • The SEC proposed cybersecurity disclosure rules are intended to formalize currently expected disclosures around aspects of cybersecurity that are useful to investors
  • The board will be required to provide disclosure about the cyber expertise that exists within the organization’s governance structure
  • Cybersecurity should be thought of and treated as necessary risk management processes and procedures
  • Cyber incident response plans need to be planned in advanced, involve key stakeholders, be well thought out and practiced and be adjusted continually to reflect the changing risk landscape
  • Documentation by the organization of the cyber risk management program is critical – including the identification, protection and disposal of data – along with testing of the program
  • Process and metrics shared with the board needs to be at the right level – By analogy: The audit committee wants to see the financial statements not the general ledger…

Resources:

  continue reading

83 episoder

Alle episoder

×
 
Loading …

Velkommen til Player FM!

Player FM scanner netter for høykvalitets podcaster som du kan nyte nå. Det er den beste podcastappen og fungerer på Android, iPhone og internett. Registrer deg for å synkronisere abonnement på flere enheter.

 

Hurtigreferanseguide

Copyright 2024 | Sitemap | Personvern | Vilkår for bruk | | opphavsrett