Skip to main content
Security Scorecard

The State of Cyber-Risk Disclosures of Public Companies

The U.S. Securities and Exchange Commission (the “SEC,” or the “Commission”) has in recent years demanded greater transparency from public companies in how they identify, measure, and manage cyber-risk.

In the wake of SolarWinds and the increased supply-chain security scrutiny in Washington DC, companies should be explaining to investors the specific risks they face from cybersecurity threats, including, among others, operational disruption, intellectual property theft, loss of sensitive client data, and fraud caused by business email compromises.

SecurityScorecard, NACD, Cyber Threat Alliance, Diligent, and IHS Markit partnered to create The State of Cyber-Risk Disclosures of Public Companies report.

Join us in making the world a safer place.