Have the new SEC reporting guidelines made a difference in “cyber risk” reporting? By comparing the information security content of mandatory SEC disclosure documents from before the new “cyber risk” reporting guidelines to those afterwards, this session will determine whether there is any evidence of an impact on reporting, post-guidelines or whether boilerplate risk verbiage has survived.