The SEC should require disclosure of cybersecurity controls

January 17, 2025

8-K filings for material cybersecurity incidents should require disclosure of all cybersecurity controls (software and services) in place when the event occurred.

Discussion: LinkedIn

Twitter Facebook LinkedIn

Assorted links 2026-05-19

May 19, 2026

Assorted links for May 19, 2026 - More AI stuff, of course:

Security Operations Center (SOC) outcomes in the age of AI

May 12, 2026

For all the hype around AI and agentic Security Operations Center (SOC) solutions, what truly matters comes down to two questions:

Exploits and malware are still subject to the laws of physics

May 8, 2026

Why AI-powered vulnerability discovery and software exploitation don’t change the fundamentals of durable defense.

Introducing Atomic Scorecard: A test tracking tool for ATT&CK + Atomic Red Team

April 18, 2026

by Keith McCammon

The SEC should require disclosure of cybersecurity controls

You May Also Enjoy

Assorted links 2026-05-19

Security Operations Center (SOC) outcomes in the age of AI

Exploits and malware are still subject to the laws of physics

Introducing Atomic Scorecard: A test tracking tool for ATT&CK + Atomic Red Team