Home
![Electronic screens display economic charts and the logo for the Federal Trade Commission](https://s3.us-east-2.amazonaws.com/files.fisher.osu.edu/blog_riskinstitute/public/styles/blog_featured_image/public/2023-08/bitcoin-gb3b82b1c5_1280.jpg?VersionId=UYCisWuOq08pco8z8S6WCOeHKCuxTAIV&h=da5232c7&itok=yAW8FTwd)
On July 26, the U.S. Securities and Exchange Commission (SEC) formally approved and adopted new cybersecurity disclosure rules for public companies. First proposed on March 9, 2022, and then closed and reopened several times for comment periods through May 2023, the highly anticipated new rules require registrants to disclose material cybersecurity incidents they experience and to disclose on an annual basis material information regarding their cybersecurity risk management, strategy and governance. Foreign private issuers are also required to make comparable disclosures.
![A hand is positioned to stop a row of wooden dominoes from falling](https://s3.us-east-2.amazonaws.com/files.fisher.osu.edu/blog_riskinstitute/public/styles/blog_featured_image/public/2023-07/balance-g6e37d724b_1280.jpg?VersionId=6LZesqAwv2ybObIuwl0hSXFMajUkuvge&h=c0130ac6&itok=4eD-KAFa)
In today's rapidly evolving business landscape of emerging technologies and capabilities, geopolitical instability and unforeseen global events, organizations are facing unprecedented challenges. Traditional notions of enterprise risk management and contingency planning are proving to be challenging in a new era where disruptions can strike from multiple fronts simultaneously. As a result, enterprise resiliency has emerged as a critical priority for organizations aiming to thrive in the face of adversity and uncertainty.
![Business person holding a phone and looking up toward the sky](https://s3.us-east-2.amazonaws.com/files.fisher.osu.edu/blog_riskinstitute/public/styles/blog_featured_image/public/2023-06/file-20230523-23-x6e2rm.jpg?VersionId=Az3mRuZv.HzzfYOOHC1AX1qa6sDMZXhE&h=cab5b2e1&itok=gJwkf6EC)
In the absence of legal guidelines, companies need to establish internal processes for responsible use of AI.
![A robotic arm and human hand extended toward one another with fingertips touching](https://s3.us-east-2.amazonaws.com/files.fisher.osu.edu/blog_riskinstitute/public/styles/blog_featured_image/public/2023-05/pexels-cottonbro-studio-6153354_0.jpg?VersionId=ptunUol4gsak6lnlRG8pWd10W62yJIf6&h=08e67910&itok=maJGHBq6)
A wise uncle once said to his nephew in a movie, “with great power comes great responsibility.” This adage has never been more true as it pertains to the emergence and popularity of AI. However, organizations are starting to reflect on and question who ultimately bears this responsibility from an enterprise risk management perspective.
![Illustration of a financial trend line with downward trend](https://s3.us-east-2.amazonaws.com/files.fisher.osu.edu/blog_riskinstitute/public/styles/blog_featured_image/public/2023-05/analysis-g234304835_1920.jpg?VersionId=7XYpopLvCFCzcNnlmnKpOJeUlqf3c2FJ&h=e0abbd2f&itok=F59qzsAR)
The sudden collapse of Silicon Valley Bank (SVB) once again highlights the importance of effective risk management.