February 27, 2024 at 10:11AM The cybersecurity landscape is experiencing a surge in litigation. Recent cases include Tesla suing ex-employees, FTC charging Uber’s former CISO, and SEC charging SolarWinds. Companies face class-action suits for data breaches. The pressure leads to CISO role reluctance and frequent changes. The community needs improved security budgets, risk-based audits, bug … Read more
February 23, 2024 at 01:41PM Companies and CISOs face potential fines from the SEC if cybersecurity and data-breach disclosure processes don’t comply with new rules. The SEC can use various enforcement tools, including injunctions, disgorgement, penalties, and barring individuals from roles. CISOs are concerned about personal liability and executives and companies may face reputational damage … Read more
December 18, 2023 at 06:11PM CISOs face increasing regulatory scrutiny amidst rising cyber threats. The SEC’s recent action against SolarWinds’ CISO signals heightened individual accountability. New reporting obligations for public firms compel CISOs to fortify security programs, potentially enhancing standing and investor appeal. However, clear guidelines from the SEC are beneficial, and adjusting operating procedures … Read more