Recently the SEC has adopted rules under which registrants are required periodically to disclose material cybersecurity instances they experience. Registrants also must disclose on an annual basis material information regarding their cybersecurity risk management, strategy, and governance. Since these disclosures are required to be in a structured data format, the SEC has released a draft XBRL taxonomy for these mandated cybersecurity disclosures.
The new draft Cybersecurity Disclosure (CYD) taxonomy has been posted on the SEC’s website, and the files are available on the DERA Taxonomies webpage. Interested parties may submit comments through August 23, 2024 via email to StructuredData@sec.gov with “Draft 2024 CYD Taxonomy” as the subject.
Sources:
Draft 2024 Cybersecurity Disclosure (CYD) Taxonomy (sec.gov)
Cybersecurity Risk Management, Strategy, Governance, and Incident Disclosure (sec.gov)
