MAY 09, 2022 | US
BSA Comments on SEC’s Proposed Cybersecurity Rule
WASHINGTON – May 9, 2022 – BSA | The Software Alliance today submitted comments to the Securities and Exchange Commission (SEC) on its 33-11038 Proposed Rule on Cybersecurity Risk Management, Strategy, Governance, and Incident Disclosure. The proposed rule is intended to better inform investors about a publicly traded company’s cybersecurity risk management, strategy, and governance and to require timely notification of material cybersecurity incidents.
The BSA response argues the SEC should continue to support sound cybersecurity practices, but it should provide tailored exceptions to new disclosure deadlines and should allow reasonable flexibility in incident disclosure to prevent severe unintended consequences. Further, the BSA response argues that if the SEC moves forward, it should provide registrants flexibility in the timing and substance of public disclosures. Finally, BSA’s response requests the Commission to clarify that disclosure requirements do not apply to third-party service providers.
BSA supports the continued strengthening of cybersecurity practices across all sectors of the U.S. economy as well as the SEC’s requirement that registrants disclose information about material events, including material cyber incidents. BSA has consistently advocated policies that will strengthen cybersecurity, as reflected in the BSA Cybersecurity Agenda.
To read the full response, please click here.
BSA |“软件联盟”(www.bsa.org) 是全球软件行业的主要倡导者，旨在代表该行业，向政府和国际市场发声。其成员包括全球最具创新力的公司，这些公司制定的软件解决方案，不但能够刺激经济，还能提升现代生活的品质。
BSA 的总部位于华盛顿特区，其营运机构遍布 30 多个国家。BSA 凭借这些机构，率先涉足合规项目，以期促进使用合法软件、倡导制定公共政策，并以此培养技术创新能力，以及推动发展数字经济。