The SEC is now providing guidance for corporations to disclose cyber security risks. The goal is that more disclosure of breaches will help improve security. So, how will this influence IT leaders’ outlook on information security?
The SEC reassured businesses they do not need to disclose information that could be used to assist attackers. And it forces IT leaders to link attacks to the costs associated with security. Therefore, IT leaders will be forced to take cyber security concerns more seriously.
We want your opinion on the SEC data breach rules. Do you think this is Hype, and these new rules won’t directly impact your IT department in a significant way, or do you think this is Ripe, and the new data breach rules are forcing IT leaders to take cyber security worries more seriously?