AuditBoard: Decode the New SEC Cybersecurity Disclosure Ruling

81% of security leaders say SEC rules will substantially impact their business. Find out the progress made by companies working to comply, the challenges IT risk and compliance leaders face, and recommendations for actionable steps toward implementation.

68% of IT risk and compliance leaders are overwhelmed by the new U.S. Securities and Exchange Commission (SEC) cybersecurity disclosure ruling established in October 2023, according to new research by AuditBoard and Ascend 2. 

In January 2024, AuditBoard surveyed over 300 security professionals who are closest to the efforts their organizations are implementing to comply with this new ruling. These professionals largely represented enterprise companies in the U.S. with over $100M in annual revenue, spanning several industries, departments, and roles — including senior leadership and executives.

AuditBoard’s new report in collaboration with Ascend2, Decode the New SEC Cybersecurity Disclosure Ruling, reveals that IT risk and compliance leaders:

• Anticipate significant impact on their business as a result of the new SEC cybersecurity disclosure ruling and resulting process changes.
• Emphasize the importance of an underlying strategic approach built on a foundation of tools to help standardize and capture processes across teams. 

• Prioritize the right technology to increase confidence in their ability to comply with the new ruling.

Decode the New SEC Cybersecurity Disclosure Ruling provides all the steps to empower your organization to conduct gap assessments, create a compliance strategy, identify the impact of cybersecurity incidents, demystify and define materiality, integrate disclosure processes, and transform your technology with the right tools.