Policy Explainer

Untitled design-18
Policy Explainer

A Full House: China’s Home-Grown Cyber Threat Research Powerhouse

If cybersecurity were a poker game, China has revealed a game-changing hand with its recently rolled out Regulation on the Management of Network Product Security Vulnerabilities (RMSV). This relatively new law ...

materiality
Policy Explainer

Determining Materiality of Cyber Events: A Guide for the New SEC Cybersecurity Disclosure Rule

Risk managers at public companies have always needed a process for determining materiality as it pertains to their shareholders. A factory being wiped out in a hurricane or a union strike is information that co...

sec
Policy Explainer

SEC Pushes Ahead with New Cyber Rules

At the tail end of July, the SEC finalized a proposed rule requiring incident and other disclosures. The new rule is already facing significant industry backlash with even the Chamber of Commerce slamming the r...

states data priv
Policy Explainer

A State-by-State Data Privacy Roundup

As it stands today, 11 states in the United States have passed comprehensive data privacy laws with many of these just going through in the first half of this year. Comprehensive data privacy goes hand-in-hand ...

AG
Policy Explainer

This is Why We Can’t Have Nice Things

The Best Day March 3rd, 2023, was an exciting day in the cybersecurity regulatory space. A memo released by the Environmental Protection Agency (EPA) marked the first federal mandatory cyber regulation outsi...

sec post
Policy Explainer

Companies Face New SEC Regulations 

Many companies are now grappling with the imminent enforcement of the new SEC regulations. According to Davis Polk, this affects specifically “market entities” including “many types of broker-dealers, clearing ...

epa
Policy Explainer

New EPA Mandatory Requirement Shows What’s to Come for Critical Infrastructure Cybersecurity Regulation

The Environmental Protection Agency (EPA) released mandatory regulations aimed at the cybersecurity of U.S. water filtration systems by requiring states to survey the networks governing drinking water filtratio...

NCS
Policy Explainer

What the New National Cyber Strategy Means for Your Business

On March 2nd, the Biden Administration released the much-anticipated National Cyber Strategy (NCS). The NCS outlines and defines the White House’s goals in cyber policy making and gives us insight into what the...

Untitled design-51
Policy Explainer

A Shifting Liability Landscape

As things stand now, when a company falls victim to a cyberattack, it is held liable for that incident. Vendors and manufacturers are able to push out products riddled with vulnerabilities without fear of signi...

Twitter website
Policy Explainer

Twitter 2-Factor Authentication Changes

This month, Twitter announced that as of March 20, text-based two-factor authentication will only be available for Twitter Blue subscribers. Twitter noted that SMS 2FA is very popular, but is the most likely to...