Columbia Law School
Sky Blog
Chairwoman Waters, Ranking Member McHenry and Members of the Committee, thank you for the opportunity to testify before you today [September 24] about the work of the U.S. Securities and Exchange Commission (SEC or Commission or agency).[1]
cybersecurity
Gibson Dunn Offers 2019 Mid-Year Securities Enforcement Update
The first half of 2019 has seen a continuation of the Securities and Exchange Commission’s emphasis on protecting the interests of Main Street investors. Chairman Clayton reiterated these themes in his testimony in May before the Financial Services and General …
Sullivan & Cromwell Discusses Key Considerations for Annual SEC Filings
As issuers prepare their Form 10‑K and 20‑F filings for fiscal year 2018, they should consider the guidance provided in some recent speeches from officials of the Securities and Exchange Commission (“SEC”), which highlight a number of considerations relating to …
Cleary Gottlieb Reviews 2018 Cybersecurity and Data Privacy Developments
In 2018, data privacy and cyber breaches made headlines throughout the year. Major companies continued to suffer data breaches, highlighting the risks and potential costs of cyber incidents across industries. At the same time, a growing and overlapping thicket of …
SEC Chair Discusses EDGAR-Hacking Enforcement Action
In August 2017, shortly after my arrival at the Commission, I was informed that an intrusion into the SEC’s Electronic Data Gathering, Analysis, and Retrieval (“EDGAR”) system took place in 2016. We immediately initiated a series of review and response
SEC Chair Talks Rulemaking Over the Past Year and the Road Ahead
For many, December is a time to reflect on the past year and to look forward to what the New Year may bring. I believe organizations also should mark milestones, take stock of what has been done and what needs
Insider Trading Ahead of Cyber Breach Announcements
On March 14, 2018, the Securities and Exchange Commission charged a former chief information officer of Equifax with insider trading. The complaint alleged that he profited from selling stock ahead of the September 2017 public announcement of a major cybersecurity …
Latham & Watkins Discusses New SEC Guidance on Cybersecurity
With so much boardroom attention on cybersecurity, directors continue to focus on the Securities and Exchange Commission (SEC) guidance issued earlier this year and its implications. The guidance adds specific expectations for disclosure controls and incident response procedures, and reiterates …
CamberView Partners Offers 2018 Proxy Season Preview
With the vast majority of annual meetings set to be held in the coming weeks, the contours of the 2018 proxy season are coming into focus. While previous years are remembered for defining initiatives — “say on pay” in 2011, …
Wachtell Lipton Discusses Risk Management and the Board of Directors
The past year has seen continued evolution in the political, legal and economic arenas as technological change accelerates. Innovation, new business models, dealmaking and rapidly evolving technologies are transforming competitive and industry landscapes and impacting companies’ strategic plans and prospects …
Debevoise Discusses the New SEC Cybersecurity Guidance
On February 21, 2018, the SEC issued new Guidance regarding cybersecurity disclosure and governance requirements applicable to SEC reporting companies. In our earlier Client Update on this topic, we discussed the disclosure considerations addressed in the Guidance. In this Client …
SEC Releases Guidance on Disclosing Cybersecurity Risks and Incidents
On February 20, the Securities and Exchange Commission approved the issuance of an interpretive release, available here, to provide guidance to public companies when preparing disclosures about cybersecurity risks and incidents. The release also communicates the Commission’s views on the
Wachtell Discusses What to Expect in White Collar and Regulatory Enforcement for 2018
In our memo last year, we acknowledged that it was close to impossible to predict the likely impact that the newly elected Trump administration would have on white-collar and regulatory enforcement. (White Collar and Regulatory Enforcement: What to Expect …
PwC Discusses SEC’s Increased Scrutiny of Robo-Advisers
Earlier this year, the Securities and Exchange Commission (SEC) issued guidance regarding “robo-advisers,” automated investment advice tools accessed via web-based or mobile platforms with minimal human interaction.1 The guidance is an important reminder to the industry that robo-advisers are …
SEC Enforcement Co-Chief Talks Cybersecurity and Retail Investor Protection
Good afternoon and thank you for inviting me to speak today. Before I begin, let me give the required disclaimer that the views I express here today are my own and do not necessarily represent the views of the Commission
Should Cybersecurity Be a Human Right?
The May 2017 WannaCry ransomware attack affected more than 200,000 computers spread across 150 nations. The results of the attack made clear that computers whose software is not up to date can hurt not only the computers’ owners, but ultimately …
Davis Polk Discusses Target’s Cyber Breach Settlement
On May 23, Target Corp. reached a record $18.5 million settlement with 47 states and the District of Columbia to end investigations into Target’s data breach in 2013. The settlement highlights the growing list of specific measures that companies are …
PwC Discusses How Financial Institutions Can Bolster Defenses Against Risk
Many financial institutions1 have implemented the three Lines of Defense (LoD) model to help define their risk management frameworks and bolster supervisors’ (e.g., desk heads and senior traders) abilities to monitor risk.2 However, as frameworks for managing financial …
Gibson Dunn Reviews U.S. Cybersecurity and Data Privacy
In 2016, companies, governments, and consumers were again challenged to navigate an evolving landscape of cybersecurity and privacy issues. This year saw flash points impacting the trajectory for data breach litigation, the future for privacy class actions, and the scope …
Debevoise Analyzes Revised New York Cybersecurity Regulation for the Financial Sector
New York’s Department of Financial Services (DFS or the Department) has responded to a large volume of comments about its proposed, sweeping cybersecurity regulation for banks, insurers and other financial service providers by softening a number of provisions that many …