Safeguard Your Organization from Cybersecurity Liabilities
To protect businesses from cybersecurity liabilities, HALOCK Security Labs works to ensure that cybersecurity programs meet technical and legal standards, using Duty of Care Risk Analysis (DoCRA). This comprehensive approach minimizes your exposure to legal action and regulatory scrutiny, providing you with the peace of mind that your organization is well-prepared to handle any potential cybersecurity threats.
HALOCK’s partner, Reasonable Risk, offers a platform that (more…)
RSA Conference: Establish Legal Defensibility & Communicate to Non-Technical Executives
RSA Conference 2025
This year’s RSA theme is The Art of Possible. It emphasizes what we can all do for our industry.
“Together, we sharpen our abilities to foresee risks, counter threats, and embrace new challenges. This shared drive connects and elevates us.”
Early Stage Expo
HALOCK and Reasonable Risk (more…)
Cyber Security Consulting Services Provider of the Year
HALOCK Security Labs is a finalist for:
Cyber Security Consulting Services Provider of the Year
Intelligent Insurer’s Cyber Insurance Awards USA 2025
The Cyber Insurance Awards Program seeks to honor the outstanding contributions of individuals and organizations that have significantly raised the bar in managing cyber risk. The awards (more…)
What Legislation Protects Against Deepfakes and Synthetic Media?
A Deep Look at Legislation
Deepfake legislation in the U.S. is advancing swiftly to combat the rising risks associated with synthetic media, addressing critical areas such as cybersecurity, privacy, election integrity, and intellectual property. Federal and state lawmakers are enacting and refining laws to curb the misuse of deepfake technology, focusing on issues like fraud, defamation, election manipulation, and (more…)
FutureCon, Chicago Cybersecurity Conference 2025
Chicago Cybersecurity Conference
HALOCK and Reasonable Risk at FutureCon explore risk management and security approaches to address evolving cyber threats. Enjoy breakfast and lunch while connecting with colleagues and industry executives. Our partner discusses risk governance and management.
View the presentation
How Executives Make Informed Cyber Decisions
September 19, 2024, at 1:00 P.M. CST
Non-technical executives can truly own cybersecurity when their companies measure, monitor, and manage cybersecurity risk like other parts of their business.
The SEC is only the latest regulator to expect non-technical executives to take ownership of cybersecurity risk management. Regulators argue that when companies pose risks to others those risks needs to be managed, whether they come from business practices, (more…)
CAMP IT: Techniques to Evolve Risk Governance and Comply with SEC Cybersecurity Rule
CAMP IT: Enterprise Risk / Security Management
In today’s highly regulatory environment it is essential that you have a clear understanding of risk across the enterprise. A risk management framework can bring visibility to key business and compliance risks and enable a company to make decisions on where to prioritize its limited resources. It is through a risk management framework that real (more…)
Cyber Firm Reports SEC’s Final Rule Language Causing 10-K Filer Missteps
CHICAGO, Sept. 17, 2024 /PRNewswire/ — HALOCK Security Labs and sister company, Reasonable Risk, recently published a survey report revealing that language in the SEC’s new cybersecurity requirements appears to be confusing executives at public companies. As a result, many 10-K filings now make implausible claims that companies do not foresee a risk that cybersecurity incidents may cause material impacts. Early 10-K filers also (more…)
Annual 10-K Survey 2024
WHAT IS THE ANNUAL 10-K SURVEY?
A publication by HALOCK Security Labs and Reasonable Risk that tracks how well public companies describe their cybersecurity programs in Item 1C of their 10-K disclosures.
WHAT IS ITEM 1C?
Item 1C is a new requirement (as of December 2023) from The SEC’s Cybersecurity Risk Management, Strategy, Governance, and Incident Disclosure rule for public filers to describe to their investors how (more…)
The SEC’s Authority Over Cybersecurity is Both Clear and Confusing
Smart executives can be forgiven for misunderstanding the breadth and limits of regulatory power over cybersecurity. Especially given the SEC’s spectacular scene-stealing actions in 2023 and its wing-clipping in (more…)