Skip to content

🚧 Early alpha — building the foundation. See the roadmap →

SEC

Created Apr 4, 2026 Updated Apr 10, 2026

Role

Regulator (US securities) — requires public companies to disclose material cybersecurity incidents and risk management practices.

Key mandates

Cyber incident disclosure (4 business days for material incidents)
Annual cybersecurity risk management disclosure
Board expertise disclosure

Links