Training
Featured CourseView All Courses

SEC595: Applied Data Science and AI/Machine Learning for Cybersecurity Professionals

SEC595Cyber Defense, Artificial Intelligence
SEC595: Applied Data Science and AI/Machine Learning for Cybersecurity Professionals
View course detailsRegister
Get a Free Hour of SANS Training

Experience SANS training through course previews.

Learn More
Learning Paths
FeaturedView all Focus Areas
NEW - AI Security Training
Can't find what you are looking for?

Let us help.

Contact us
Community Resources

SANS Community Benefits

Connect, learn, and share with other cybersecurity professionals

AI Risk & Readiness

Explore expert-driven guidance, training, and tools to help defend against AI-powered threats and adopt AI securely.

Join the SANS Community

Become a member for instant access to our free resources.

Sign Up
For Organizations

Public Sector

Mission-focused cybersecurity training for government, defense, and education

Partnerships

Explore industry-specific programming and customized training solutions

Sponsorship Opportunities

Sponsor a SANS event or research paper

Interested in developing a training plan to fit your organization’s needs?

We're here to help.

Contact Us
Talk With an Expert
Talk With an Expert

U.S. SEC Incident Reporting and Management Oversight

Prompt Reporting of Cyber Incidents, Disclosures on Cybersecurity Processes, and Detailed Board Management Oversight.

Money With Stock Market Lines

In December 2023, the U.S. Securities and Exchange Commission (SEC) made final rules requiring publicly traded companies to standardize disclosures regarding cybersecurity risk management, strategy, governance, and incident reporting. These rules are designed to improve transparency for investors and ensure that organizations treat cybersecurity as a critical component of corporate governance and enterprise risk management. The goal is also to encourage organizations to strengthen internal risk management and oversight mechanisms and promote timely reporting of material cybersecurity incidents that could impact financial or operational performance.

These requirements include:

  • Cyber Incident Reporting: Public companies must disclose any material cybersecurity incident via Form 8-K, Item 1.05, within four business days of determining materiality, including the material impact on the company’s financial operations or reputation in protecting shareholder value.
  • Annual Risk and Governance Disclosures: Companies must include in their annual reporting (Form 10-K or Form 20-F for FPIs) the processes for identifying and managing cyber risks and threats. This includes how cybersecurity affects business strategy and operations, as well as the organization’s overall financial condition, to ensure shareholders are informed about the company’s cyber hygiene.
  • Board and Leadership Oversight: The board of directors and executive management must demonstrate oversight of cybersecurity risks. This includes clearly defined reporting lines and accountability mechanisms for the CIO, CISO, and security teams.

Navigating new and evolving cybersecurity regulations can be daunting, making compliance a complex challenge. In this high-stakes environment, seeking guidance from industry leaders is essential. SANS stands at the forefront of cybersecurity preparedness, offering deep expertise and immersive training to help organizations meet and exceed regulatory requirements. From breach disclosure protocols to enhancing organizational cyber resilience, SANS provides the strategic knowledge and tools needed to achieve compliance while strengthening defenses against current and future cybersecurity threats.

SANS Solutions and Curriculum

Developing a Cyber Incident Plan

Cyber Crisis Exercise

Executive Cyber Exercises
Learn More

Cyber Incident Management

Cybersecurity Leadership Training
Learn More

Leadership Tied to SEC Requirements

  • Slide 1 of 4

    LDR514: Security Strategic Planning, Policy, and Leadership

    LDR514Cybersecurity Leadership
    LDR514: Security Strategic Planning, Policy, and Leadership
    • GIAC Strategic Planning, Policy, and Leadership (GSTRT)
    • 5 Days (Instructor-Led)
    • 30 CPEs / 30 Hours (Self-Paced)
    • Labs: 32 Hands-On Labs

    View course detailsRegister
  • Slide 2 of 4

    LDR519: Cybersecurity Risk Management and Compliance

    new
    LDR519Cybersecurity Leadership
    LDR519: Cybersecurity Risk Management and Compliance
    • 5 Days (Instructor-Led)
    • 30 CPEs / 30 Hours (Self-Paced)
    • Labs: 16 Hands-On Labs

    View course detailsRegister
  • Slide 3 of 4

    LDR553: Cyber Incident Management

    LDR553Cybersecurity Leadership
    LDR553: Cyber Incident Management
    • GIAC Cyber Incident Leader (GCIL)
    • 5 Days (Instructor-Led)
    • 30 CPEs / 30 Hours (Self-Paced)
    • Labs: 28 Hands-On Labs

    View course detailsRegister
  • Slide 4 of 4

    SEC403: Secrets to Successful Cybersecurity Presentation

    SEC403Cybersecurity Leadership
    SEC403
    • 6 CPEs / 6 Hours (Self-Paced)

    View course detailsRegister

Handling Cyber Incidents / Incident Response

  • Slide 1 of 4

    FOR528: Ransomware and Cyber Extortion

    FOR528Digital Forensics and Incident Response
    FOR528: Ransomware and Cyber Extortion
    • 4 Days (Instructor-Led)
    • 24 CPEs / 24 Hours (Self-Paced)
    • Labs: 13 Hands-On Labs

    View course detailsRegister
  • Slide 2 of 4

    FOR508: Advanced Incident Response, Threat Hunting, and Digital Forensics

    FOR508Digital Forensics and Incident Response
    FOR508: Advanced Incident Response, Threat Hunting, and Digital Forensics
    • GIAC Certified Forensic Analyst (GCFA)
    • 6 Days (Instructor-Led)
    • 36 CPEs / 36 Hours (Self-Paced)
    • Labs: 35 Hands-On Labs

    View course detailsRegister
  • Slide 3 of 4

    FOR578: Cyber Threat Intelligence

    FOR578Digital Forensics and Incident Response
    FOR578: Cyber Threat Intelligence
    • GIAC Cyber Threat Intelligence (GCTI)
    • 6 Days (Instructor-Led)
    • 36 CPEs / 36 Hours (Self-Paced)
    • Labs: 20 Hands-On Labs

    View course detailsRegister
  • Slide 4 of 4

    FOR608: Enterprise-Class Incident Response & Threat Hunting

    FOR608Digital Forensics and Incident Response
    FOR608: Enterprise-Class Incident Response & Threat Hunting
    • GIAC Enterprise Incident Responder (GEIR)
    • 6 Days (Instructor-Led)
    • 36 CPEs / 36 Hours (Self-Paced)
    • Labs: 20 Hands-On Labs

    View course detailsRegister

Resource Highlights

What You Need to Know About the SEC Cybersecurity Mandate

Luna Bloom, Chief of the Office of Rulemaking in the SEC’s Division of Corporation Finance, dives into the nuances of the SEC cybersecurity requirements.

View Webinar

Summary of SEC Rules and Regulations

An overview and deciphering of the details blog of the SEC Cyber Requirements from Kim Lee.

View Resource

Moving Beyond Tech: The SEC’s New Cybersecurity Regulations and the Need for Comprehensive Training

These new regulations reinforce a crucial tenant that effective cybersecurity starts with skills people first.

View Resource

SANS Compliance Countdown 2025

Have segments on solutions and what you need to do to meet the SEC regulations directly from SANS faculty.

View Webinar

SANS Compliance Countdown 2024

Featuring Jim Lopez from the SEC on “Hear from the Experts” and solutions from SANS faculty including simplifying regulatory requirements, how to talk to the board, and cyber jedi training.

View Webinar

SEC Final Rule: Cybersecurity Risk Management, Strategy, Governance, and Final Disclosure

View Resource

SEC Cybersecurity Disclosure Fact Sheet

View Resource

SEC Cyber Press Release

View Website