Jennifer Louis, CPA considers recent disclosures required by the SEC as related to cybersecurity incidents. These disclosures include two components. One component requires disclosure of material cybersecurity incidents within days of the determination that the incident is material, while the other revolves around the annual information to be disclosed regarding risk management and strategies. The rules became effective for annual reports for fiscal years ending on or after December 15, 2023.