On 26 July 2023, the US Securities and Exchange Commission (SEC) approved the final rules for Cybersecurity Risk Management, Strategy, Governance, and Incident Disclosure. The SEC first proposed amendments to its rules on disclosures regarding cybersecurity risk management, strategy, governance, and incident reporting by public companies on 9 March 2022.
