Want to create an interactive transcript for this episode?
Podcast: Corruption Crime & Compliance
Episode: Deep Dive into the SEC's Settlement with R&R Donnelly on Cybersecurity Controls
Description: How does the SEC's recent settlement with R.R. Donnelly & Sons Company impact internal controls for cybersecurity incidents? In this episode of Corruption, Crime, and Compliance, Michael Volkow discusses a significant decision by the SEC involving a $2.1 million settlement with RR Donnelly & Sons Company (RRD) related to a 2021 ransomware attack. The SEC's decision marks the first time it applied its internal controls enforcement authority to cover cybersecurity policies and procedures, representing a substantial expansion of its enforcement reach.The SEC criticized RRD for failing to prioritize the review of security alerts and implement an...