Growing geopolitical conflicts have raised security concerns around cyberattacks and exposed existing vulnerabilities in the nation’s cybersecurity regime, heightening the necessity to build robust domestic cyber defense systems for commercial facilities.
Congress and federal agencies have also mandated or proposed new cyber incident reporting requirements for critical infrastructure and public corporations.
The Roundtable continues to help strengthen information sharing about cyber threats and cyber defense capabilities between public and private entities through the work of our Homeland Security Task Force (HSTF) and the Real Estate Information Sharing Agency (RE-ISAC).
Separately, The Roundtable and its industry partners have engaged the Securities and Exchange Commission (SEC) about new rules that will require public companies to disclose more information about cybersecurity-related incidents, risk management, strategy, and governance.
Our HSTF continues its work with the Real Estate Information Sharing Agency (RE-ISAC) and public officials to strengthen the security and resilience the commercial facilities sector in response to cyber risks.
The Roundtable and Nareit expressed a number of concerns about the SEC’s cyber incident reporting rules that include rigid incident reporting deadlines and granular requirements, which could unintentionally exacerbate cybersecurity risks for issuers while imposing unjustified burdens.
For more information and recent updates, reference our resources below.