Matthew helps heavily regulated companies with a significant technical footprint build security or privacy programs, architect technical risk-based solutions to regulatory compliance challenges, or execute specialized projects to manage risk. He does this by taking the time to understand their business and helping them develop and implement the solutions that are the best fit for their unique circumstances.
The SEC’s cybersecurity breach reporting regulation goes into effect December 18. What are the MSSP revenue opportunities? How should MSSPs prepare?
What's important to understand is that action of making that determination and maybe making that filing is not going to happen in a vacuum, it's only going to be possible for it to be done effectively after a risk-based security program has been implemented that's mapped to the actual specific risks of that firm.
And then it's been in place and tested, ideally, from an incident response perspective, prior to any actual incident happening. That's going to be what's critical for any company to successfully implement these requirements. It's not something that they're going to be able to just jump in and do after an incident already happened. It's something that needs to be prepared for over time and there's some significant runway to that.