Incident Reporting 101 for Public Companies

Home
Topics
Security and risk management for the midmarket
Compliance management for the midmarket
Incident Reporting 101 for Public Companies

Incident Reporting 101 for Public Companies

Thanks to the Sarbanes-Oxley Act, public companies are required to disclose any event that can materially affect financial results. According to Info-Tech Research Group, an IT analyst firm based in London, Ontario, incidents -- security breaches, virus attacks, downtime and data loss -- can have significant impact and therefore should be reported promptly to the Securities and Exchange Commission and to shareholders. Info-Tech makes these reporting recommendations:

1. Create a presentation-style report. When communicating incidents to shareholders in particular, Info-Tech says a PowerPoint presentation that defines the problem and describes the response is usually sufficient.

2. Obtain CFO signoff. Since events that can significantly affect a company's financial results are the only ones that must legally be reported, enlist the CFO to make the final call on whether to issue a report.

3. Keep any report simple. When reporting a security breach or other IT-related event, don't use highly technical terms. Keep the language clear.

Megan Santosus, a former senior editor at CIO Decisions, is now a features editor for SearchDataCenter.com. Write to her at msantosus@techtarget.com.

Dig Deeper

People who read this also read...

Show me more

This was first published in February 2006

More from Related TechTarget Sites

CIO
Compliance
Health IT
Storage
Cloud computing
Mobile Computing
Windows IT

CIO
- Cost, data quality issues still hobble CIOs' BI strategies
  
  Data quality remains a top challenge for business intelligence. For CIOs, this should be the question: What's good enough for the task at hand?
- Gartner CIO forum: The innovation process and business transformation
  
  The 2012 Gartner CIO Leadership Forum will focus on how CIOs can drive the innovation process and how they and IT can transform the business.
- BI projects require open mind, deft touch
  
  Most organizations sit on a gold mine of business intelligence. Extracting it requires knowing how analytics projects differ from day-to-day IT work.
Compliance
- Online Trust Alliance guide offers tips for data protection strategies
  
  With the number and severity of breaches increasing, data protection strategies are vital. To help, the Online Trust Alliance has released a guide to online data protection.
- Vulnerabilities exposed during disposal of used computers
  
  Upgrading equipment? Proper disposal of used computers is necessary to reduce risk, because sensitive data is vulnerable when old electronics go out the door.
- Sustainability: From strategic objective to compliance operation
  
  With the increased interest in going green, sustainability and compliance are now directly related. But making sustainability integral to your compliance operation is not easy.
Health IT
- Connectivity docs will need for Comprehensive Primary Care Initiative
  
  CMS's care coordination pilot could signal the start of medical homes for solo physicians and group practices, but it will require some IT infrastructure to get off the ground.
- In choosing EHR for iPad, consider native, virtualized, hybrid options
  
  As physicians continue to use the iPad, an EHR system for the device isn't far behind. Here two experts discuss the pros and cons of native, virtualized and hybrid EHR apps.
- Ten EHR benefits for health care practices just getting started
  
  Many organizations remain on the fence when it comes to electronic health records. These 10 EHR benefits should help providers decide whether to proceed with EHR implementation.
searchStorage
- Week in review podcast: EMC offers VFCache PCIe flash card, more news
  
  Listen to the top storage headlines of the week from TechTarget's Storage Media Group, starting with a discussion around EMC's release of the VFCache PCIe flash card.
- Scale-out network-attached storage: Options in today’s market
  
  Scale-out NAS systems are gaining interest due to rapid growth of file data and “big data” analytics. Here’s a look at the scale-out NAS vendors.
- Week in review podcast: HDD shortage, AWS cloud gateway; and more
  
  Listen to the top news of the week from the Storage Media Group: The impact of HDD shortages, a new Amazon l cloud storage gateway -- and more headlines.
Cloud computing
- Keys to integrated cloud application management
  
  Seamless cloud application management isn’t a pipe dream. By following a few steps, cloud admins can monitor cloud app performance from one interface.
- Cloud infrastructure providers remain hot commodities
  
  Cloud infrastructure providers attracted the attention of acquisitive suitors last year. Profitable cloud vendors this year will catch the eye of telecoms.
- Digging deeper into IBM SmartCloud for private clouds
  
  IBM SmartCloud services give enterprises some options to build private and hybrid clouds and may give IBM a chance to improve its lagging cloud image.
Mobile Computing
- Bringing BYOD to your enterprise
  
  Bring your own device (BYOD) can be a boon for both employees and enterprises, but clear policies and management tools are needed.
- Meeting technical requirements for mobile health care deployments
  
  IT departments deploying mobile health care solutions must ensure that using mobile devices in health care settings doesn't violate federal laws or compromise security.
- Making the call: Distributed antenna systems and in-building wireless
  
  Distributed antenna systems and in-building wireless solutions are two options to improve wireless cellular coverage within an enterprise facility.
Windows IT
- Building a self-assessment plan for IT pros
  
  Take a step back to reflect on where you’ve been and where your career is going. Annual self-assessment can boost your professional profile and help prepare you for an uncertain future.
- SharePoint 2010: Much more than document sharing
  
  Is your company just using SharePoint 2010 for document sharing? Check out some of the features you may be missing out on and make the most of your investment.
- Our top five IT career tips of 2011
  
  We’ve compiled our top IT career tips of 2011 as a treat to our readers. You’ll learn about various methods you can use to improve your career trajectory -- and save money at the same time.

All Rights Reserved, Copyright 2007 - 2012, TechTarget