Legislation would require companies to name cybersecurity-savvy board members. Cybersecurity Disclosure Act would require disclosure of board members’ cybersecurity expertise. Only 11 percent of survey respondents say their boards have a high level of understanding of cybersecurity risks. Two-thirds of some 200 board members say they lack confidence that their companies are properly secured against cyberattacks. Lawmakers often introduce legislation, knowing it won’t come up for a vote, to publicize an issue they and constituents care about or prompt action without having to enact a law.”]
Source: https://www.cuinfosecurity.com/coercing-companies-to-name-security-savvy-directors-a-8831