Morrison Foerster is an international law firm with lawyers practicing throughout the United States, Asia, and Europe. Click to discover more.

mofo_share_image.jpg

Morrison Foerster

common-default.jpeg

Terms / Notices

Cookies

Privacy Policy

Reporting Hotline

Attorney Advertising

Alumni

  Linkedin

MoFo LinkedIN

  Facebook

MoFo Facebook

YouTube

MoFo Youtube

Morrison Foerster - Footer

Navigating the SEC’s Latest Cybersecurity Disclosure Rules for Public Companies

You have not solved the recaptcha challenge yet or session expired, try again.

Email Disclaimer

Disclaimer

Unsolicited e-mails and information sent to Morrison Foerster will not be considered confidential, may be disclosed to others pursuant to our <a href="https://www.mofo.com/about/privacy-policy.html">Privacy Policy</a>, may not receive a response, and do not create an attorney-client relationship with Morrison Foerster. If you are not already a client of Morrison Foerster, do not include any confidential information in this message. Also, please note that our attorneys do not seek to practice law in any jurisdiction in which they are not properly authorized to do so.

Feedback

mofo-logo-2022.svg

People

Capabilities

Resources

About

Culture

Offices

Careers

Stay Connected

Join our webinar on the U.S. SEC’s recently-adopted rules governing cybersecurity risk management, strategy, governance, and incident reporting by public companies. The new requirements will require companies to evaluate and adapt their disclosure controls and procedures, management processes, and governance structures around cybersecurity to prepare for the new environment of transparency in this important area.

Join our webinar on the U.S. SEC’s recently-adopted rules governing cybersecurity risk management, strategy, governance, and incident reporting by public companies. The new requirements will require companies to evaluate and adapt their disclosure controls and procedures, management processes, and governance structures around cybersecurity to prepare for the new environment of transparency in this important area.Our speakers—including a former Chief Counsel of the SEC’s Division of Corporation Finance, a former Senior Trial Counsel of the SEC’s Division of Enforcement, and a leading cyber and privacy expert—will explain the new requirements from a regulatory perspective and offer practical guidance on issues to be considered as well as the steps towards compliance that should be taken by public companies and their boards of directors.Speakers<ul style="direction: ltr;text-align: left;"><li>Dave Lynn, Former Chief Counsel of the SEC’s Division of Corporation Finance, Chair of Morrison Foerster’s Public Company Advisory & Governance Group</li><li>Haima Marlier, Former Senior Trial Counsel of the SEC’s Division of Enforcement, Co-chair of Morrison Foerster’s Securities Litigation, Enforcement, and White Collar Defense Group</li><li style="direction: ltr;text-align: left;">Miriam Wugmeister, Co-chair of Morrison Foerster’s Global Privacy and Data Security Group</li></ul>The <a href="https://www.veracast.com/webcasts/mofo/mcle-programs/7pp6A3.cfm" target="_blank">replay link</a> will be live until November 4, 2024.<hr>

Sign Up

Haima Marlier is a Partner in Morrison Foerster’s Investigations + White Collar Defense group and co-chairs its Fintech practice. Drawing on her experience as a former Securities and Exchange Commission Senior Trial Counsel, Haima represents public and private companies, financial services providers, and executives, directors, and other individuals in SEC, CFTC, Financial Industry Regulatory Authority (FINRA), state securities regulator, and internal investigations, as well as in related litigation. She has more than 20 years of experience litigating in federal, state, and administrative courts, leading complex negotiations, and representing her clients in mediation. She also counsels clients regarding securities enforcement developments, trends, and risk mitigation.Before joining the firm, Haima spent nearly a decade in the SEC’s Division of Enforcement. While at the SEC, Haima served as lead counsel on a number of prominent enforcement litigations and investigations involving public companies, registered investment advisers, broker-dealers, banks, and individuals in matters arising under the federal securities laws. She has also worked closely with foreign securities regulators, numerous U.S. Attorney’s Offices, and FINRA.Haima serves on the board of trustees of the SEC Historical Society, a nonprofit dedicated to preserving the knowledge and history of financial regulation; mentors Penn State students of color who aspire to become lawyers; and is a member of the board of directors of, and a volunteer running coach for, Girls on the Run New Jersey, a nonprofit dedicated to inspiring girls to recognize their inner physical and emotional strength. She maintains an active pro bono practice.Haima has been recognized by Crain’s New York Business’ Notable Women in Law and Notable Diverse Leaders in Law; The Legal 500 USA as a recommended lawyer in Securities Litigation: Defense, Investigations and White Collar Criminal Defense, and Fintech; the Securities Docket’s Enforcement Elite; and the New York Law Journal for her efforts in the diversity and inclusion space.Haima received her J.D. from Boston College Law School and her B.A. from the Pennsylvania State University.<h4>Selected Significant Representations:</h4><h5>Cybersecurity</h5><ul><li>Successfully resolved an SEC investigation into a global technology solutions company’s cybersecurity risk disclosures and disclosure controls, policies, and procedures, with an acknowledgment by the SEC of the client’s significant remediation and cooperation.</li><li>Representing a global tech service management company in an SEC inquiry into its cybersecurity incidents and disclosures.</li><li>Represented numerous public companies and other clients in the SEC’s SolarWinds cybersecurity enforcement sweep.</li><li>Advising numerous public companies and SEC-registered firms on the efficacy of their cybersecurity disclosure controls and procedures and the materiality of cybersecurity incidents.</li><li>Represented a major technology company in an internal investigation into its cybersecurity statements and controls, policies, and procedures.</li></ul><h5>Fintech & Crypto</h5><ul><li>Represented a nonprofit foundation supporting a major blockchain, as well as two of its senior individuals, in an SEC investigation, with a complete termination letter issued by the SEC.</li><li>Successfully resolved an SEC crypto investigation into anti-money laundering and other compliance and monitoring programs on behalf a former senior bank executive.</li><li>Representing a leading cryptocurrency exchange platform in responding to SEC, CFTC, and state attorney general subpoenas and other requests for information.</li><li>Obtained a successful federal court settlement for a venture capital fund in a securities class action concerning an unregistered digital token offering.</li><li>Advising numerous Fintech companies, from startups to mature organizations, on securities enforcement compliance best practices and enforcement risk mitigation.</li><li>Represented a private investor in an SEC investigation related to a reverse merger involving a cryptocurrency company with no action taken by the SEC.</li></ul><h5>Artificial Intelligence</h5><ul><li>Representing a major tech company in an SEC investigation focused on AI-related disclosures and policies.</li></ul><h5>Accounting & Financial Reporting</h5><ul><li>Represented the former Chief Operations Officer of a major NASDAQ-listed food distributor in SEC and special committee investigations, with a complete termination letter issued by the SEC, as well as in related Delaware Court of Chancery litigation, which was favorably resolved.</li><li>Successfully resolved SEC and special committee investigations into related-party transaction disclosures and accounting issues, as well as related shareholder litigation, on behalf of a former CEO of a NASDAQ-listed company.</li><li>Represented an audit committee of a public company in an internal investigation resulting from a whistleblower complaint alleging accounting and disclosure issues.</li><li>Represented a leading public company in an internal investigation resulting from a whistleblower complaint alleging accounting and disclosure issues.</li></ul><h5>Other Securities Enforcement Matters</h5><ul><li>Represented the former CEO of a major company listed on the New York Stock Exchange in an SEC insider trading investigation with no action taken by the SEC.</li><li>Represented an individual in an SEC investigation concering the “pay-to-play” rule.</li><li>Represented a private investment fund in a COVID-19 related SEC insider trading investigation with no action taken by the SEC.</li><li>Represented a broker-dealer in a for-cause FINRA examination into anti-money laundering and other issues.</li><li>Represented a leading international company in government investigation into pharmaceutical drug pricing.</li><li>Represented a biotech company in a Massachusetts Securities Division investigation concerning securities registration exemptions and representations to investors regarding securities registration with no action taken by the state regulator.</li><li>Obtained a successful resolution for a pre-IPO biotech company in a wrongful termination lawsuit brought by a co-founder and former CEO terminated by the board of directors.</li><li>Represented the SEC in all stages of federal and administrative proceedings, including at trial and on appeal, in matters involving violations of the federal securities laws.</li></ul>

Haimavathi Marlier

Partner

Few lawyers in the world have Miriam Wugmeister’s breadth and understanding of privacy and data security laws, obligations, and practices. As co-chair of Morrison Foerster’s preeminent global Privacy + Data Security Group, Miriam is regularly called upon by some of the world’s largest and most complex multinational organizations to confront their most difficult U.S. and international privacy and cybersecurity challenges. Ranked among the top in the profession by all major directories, her clients say: “Miriam is the best privacy counsel in the country that I have ever worked with. Her advice is always spot-on, practical, and helpful, and her judgment is impeccable.” “Miriam is a true leader in her field. I appreciate her brilliance and expertise.” “She keeps up with a rapidly evolving area and is quick to answer the most challenging questions with practical guidance a business can use.” (Chambers USA).Miriam’s counsel is particularly prized for complex global privacy and data security incidents. She has navigated some of the largest and most consequential incidents in history, including assisting Mandiant when it discovered and warned the world about the SolarWinds compromise. Having helped hundreds of clients respond to cybersecurity incidents, Miriam is called upon to advise and educate boards of directors regarding cybersecurity and the key role that boards play in understanding and overseeing the potential risks. Miriam works with companies to develop comprehensive customized incident response plans, train staff, conduct extensive tabletop exercises, and address key issues with executive management. While she regularly advises clients on responses to ransomware attacks and other cyber extortion incidents, she works on all other aspects that arise in the context of large security incidents including communication strategies, notifications to customers, consumers, and regulators; public disclosures; interactions with law enforcement globally; litigation; and investigations by regulators around the world. Miriam advises organizations on the planning and execution of complex global compliance efforts and defends regulatory matters relating to privacy and cybersecurity in the United States and internationally.Miriam serves as a board member of the <a href="https://sustainability.adp.com/adp-innovation-strategy.html#:~:text=In%20harnessing%20the%20power%20of%20big%20data%20through,that%20involve%20artificial%20intelligence%2C%20ML%20and%20big%20data." target="_blank">ADP AI & Data Ethics Committee</a> and is a leader in <a href="/capabilities/artificial-intelligence" target="_self">MoFo’s AI Group</a>, a cross-practice team that provides sophisticated, full-service representation to a wide range of clients with companies that both develop and use cutting-edge, rapidly changing technology in the AI space. Miriam uses her extensive industry experience and collaborative global approach to provide her clients with fast access to the newest trends and developments in AI.As founder and leader of the Global Privacy Alliance (GPA), Miriam encourages the development of rational privacy laws around the world and monitors privacy practices, laws, and regulations globally. On behalf of the GPA’s members, she takes an active role in anticipating upcoming privacy legislation and educating regulators on the commercial implications of proposed regulations.Chambers USA and Chambers Global recommend Miriam in the top tier of privacy and data security lawyers worldwide, with clients commenting to Chambers USA that she is “extremely practical and phenomenally smart. Just about one of the best privacy advisers there is,” and The Legal 500 US recognizing her as a leading lawyer for her “professionalism and strong international presence.” For her work in data protection and privacy, Miriam was an inaugural inductee into The Legal 500 Hall of Fame, which is comprised of outstanding U.S. lawyers who have been recommended as The Legal 500’s Leading Lawyers for the last six consecutive years. The Cybersecurity Docket has recognized Miriam as one of its Incident Response 50, a list of the top data breach response lawyers globally. She has been named one of Financial Times’ Top 10 Innovative Lawyers in North America and a National Law Journal Cybersecurity and Data Privacy Trailblazer for her breakthrough work in this space. Miriam was also previously designated as an Ethisphere Attorney Who Matters and a BTI Client Service All-Star.

Navigating the SEC’s Latest Cybersecurity Disclosure Rules for Public Companies

07 Aug 2023 2:00 PM - 3:00 PM EDT