The Securities and Exchange Commission announced amendments to a 24-year regulation that will require certain financial firms including broker-dealers, funding portals, registered investment advisers, transfer agents, and investment companies to create well-defined response plans for data breach incidents, reports The Record, a news site by cybersecurity firm Recorded Future.
Article Link: Financial companies must have data breach incident plans, SEC says | SC Media