Tap any paragraph to write a margin note. Your notes collect in the Desk below the text and file under cases with @. The side-by-side margin rail opens on a larger screen.

§
Marginalia
Code · BILL · 116th Congress · S. 4629 (Introduced in Senate) — To address issues involving the People's Republic of China. · Sec. 434

Sec. 434. Cybersecurity expertise disclosure

426 words·~2 min read·/bill/116/s/4629/is/section-434

A research copy — for the controlling text, always check the official state or federal source. Not legal advice.

The Securities Exchange Act of 1934 ( 15 U.S.C. 78a et seq.) is amended by inserting after section 14B ( 15 U.S.C. 78n–2 ) the following: In this section— the term cybersecurity means any action, step, or measure to detect, prevent, deter, mitigate, or address any cybersecurity threat or any potential cybersecurity threat; the term cybersecurity threat — means an action, not protected by the First Amendment to the Constitution of the United States, on or through an information system that may result in an unauthorized effort to adversely impact the security, availability, confidentiality, or integrity of an information system or information that is stored on, processed by, or transiting an information system; and does not include any action that solely involves a violation of a consumer term of service or a consumer licensing agreement; the term information system — has the meaning given the term in section 3502 of title 44, United States Code; and includes industrial control systems, such as supervisory control and data acquisition systems, distributed control systems, and programmable logic controllers; the term NIST means the National Institute of Standards and Technology; and the term reporting company means any company that is an issuer— the securities of which are registered under section 12; or that is required to file reports under section 15(d).
Not later than 360 days after the date of enactment of this section, the Commission shall issue final rules to require each reporting company, in the annual report of the reporting company submitted under section 13 or section 15(d) or in the annual proxy statement of the reporting company submitted under section 14(a)— to disclose whether any member of the governing body, such as the board of directors or general partner, of the reporting company has expertise or experience in cybersecurity and in such detail as necessary to fully describe the nature of the expertise or experience; and if no member of the governing body of the reporting company has expertise or experience in cybersecurity, to describe what other aspects of the reporting company’s cybersecurity were taken into account by any person, such as an official serving on a nominating committee, that is responsible for identifying and evaluating nominees for membership to the governing body.
For purposes of subsection (b), the Commission, in consultation with NIST, shall define what constitutes expertise or experience in cybersecurity using commonly defined roles, specialties, knowledge, skills, and abilities, such as those provided in NIST Special Publication 800–181, entitled National Initiative for Cybersecurity Education
(NICE)Cybersecurity Workforce Framework , or any successor thereto. .
Connectionstraces to 1
Traces to 1 document
1 reference not yet in our index
  • 15 USC 78n–2
Citation graph
cites case law
Sec. 434
Cybersecurity expertise disclosure
U.S.C.§ 78a
Cite15 USC 78n–2
Cites 2Cited by 0 across 0 sources
★   the supreme law of the land   ★
Don't Tread on Me
E Pluribus Unum — out of many, one

"If you don't know your rights, you don't have any."

Marginalia · a citizen's law index
A research desk, not legal advice. Always read the cited source before relying on a summary.
Questions or an issue? support@self-law.org
disclaimerMarginalia is a research index, not a law firm. Nothing on this site is legal, tax, or financial advice and no attorney–client relationship is formed by using it. Statutes, regulations, and case law change; summaries, search results, AI output, and member posts may be incomplete, out of date, or wrong. Any interpretation drawn from material on this site should be validated by a licensed attorney in your jurisdiction before you act on it.