26 min listen
SEC Cybersecurity Risk Governance Requirements - Christopher Hetner - CSP #122
SEC Cybersecurity Risk Governance Requirements - Christopher Hetner - CSP #122
ratings:
Length:
27 minutes
Released:
May 16, 2023
Format:
Podcast episode
Description
In April, the SEC is expected to finalize new rules on cybersecurity. The rules will require every publicly traded company to file disclosures with descriptions of their security strategy, governance, and risk management. Companies will need to explain to shareholders how they assess cyber risk, describe their security policies, and demonstrate a significant level of board oversight on cybersecurity issues. The SEC rules are qualitatively different from existing cyber regulatory frameworks, such as HIPAA and PCI DSS, which skew toward enforcing technical controls handled by the IT department. The SEC rules, in contrast, demand that C-suites and boards get more involved and demonstrate a strategic approach to managing cyber risk. Visit https://securityweekly.com/csp for all the latest episodes! Follow us on Twitter: https://www.twitter.com/cyberleaders Follow us on LinkedIn: https://www.linkedin.com/company/cybersecuritycollaborative/ Show Notes: https://securityweekly.com/csp122
Released:
May 16, 2023
Format:
Podcast episode
Titles in the series (100)
Do You Know where Your Data Is? - William Miaoulis - CSP #42: Data is everywhere today as users are working remotely, storing information in the cloud, downloading to USB drives and so on. Join this podcast to learn from a Healthcare CISO and some of the typical common events which take place to expose sensitive... by CISO Stories Podcast (Audio)