On August 4, 2023, the Securities and Exchange Commission’s (“SEC”) final rule on Cybersecurity Risk Management, Strategy, Governance, and Incident Disclosure was published in the Federal Register, confirming the dates on which these new requirements will enter into force. Covington has previously published a detailed summary of this rule, which imposes significant new disclosure requirements for publicly traded companies and, in certain instances, foreign private issuers. As discussed in greater detail in that alert, the new rule requires U.S. public companies to report material cybersecurity incidents on Form 8-K within four business days of their determination that a material cybersecurity incident has occurred. Foreign private issuers will be required to furnish information on Form 6-K about material cybersecurity incidents that they disclose or otherwise publicize to any stock exchange or to security holders in a foreign jurisdiction. Continue Reading Compliance Dates for SEC’s New Cyber Disclosure Rules Confirmed
David H. Engvall
David Engvall advises public companies on a wide range of securities, capital markets, corporate governance, and related matters. In the capital markets area, he has handled a range of transactions, including registered and unregistered offerings of common and preferred stock, investment grade and high yield debt securities, convertible securities, and trust units. He advises companies in a number of industries. David’s transactional experience also includes equity and debt tender offers, investments and M&A transactions.
David advises public company clients on a wide variety of disclosure, SEC compliance, transactional, and corporate governance matters. David is actively engaged in advising clients on a wide range of specific securities law topics, including executive compensation, beneficial ownership reporting, environmental, social and governance (“ESG”) reporting, and specialized disclosures such as those pertaining to conflict minerals. In the corporate governance area, he advises clients on topics such as Board committee charters, shareholder activism, management succession planning, and director independence.
SEC to Consider Cyber Rules Next Week
According to a recently-released meeting agenda, the Securities and Exchange Commission’s (“SEC”) upcoming July 26, 2023 meeting will include consideration of adopting rules to enhance disclosures regarding cybersecurity risk management, governance, and incidents by publicly traded companies.
The SEC initially proposed these rules in March 2022. If adopted as proposed, the new rules would…
Update on SEC’s Cybersecurity Rules
Earlier this week, the Securities and Exchange Commission (“SEC”) published an update to its rulemaking agenda indicating that two previously-proposed cyber rules might not be approved until October 2023 (although the agenda’s timeframe is an estimate and the rules could be finalized sooner, or later). The proposed rules in question address disclosure requirements regarding cybersecurity…