{"id":38721,"date":"2024-06-06T12:30:31","date_gmt":"2024-06-06T18:30:31","guid":{"rendered":"https:\/\/swimlane.com\/?post_type=sw_resource&#038;p=38721"},"modified":"2024-06-06T12:30:33","modified_gmt":"2024-06-06T18:30:33","slug":"guia-de-ciso-para-el-cumplimiento-de-la-sec","status":"publish","type":"sw_resource","link":"https:\/\/swimlane.com\/es\/blog\/ciso-guide-to-sec-compliance\/","title":{"rendered":"El misterio de la \u201cmaterialidad\u201d: Gu\u00eda del CISO para el cumplimiento de la SEC"},"content":{"rendered":"\n\n\n<section class=\"bs-section bs-section-f49668dca89a07af4c4bed27713f079b6839f643 bs-section---default bs-section--blog-inner-banner  \"><style>.bs-section.bs-section-f49668dca89a07af4c4bed27713f079b6839f643{ background-color: #000743;} <\/style><div class=\"container\">\n<div class=\"bs-row row  flex-md-row-reverse bs-row---default\">\n<div class=\" bs-column col-sm-12 col-md-12 col-lg-6   bs-column-3c02e72bbbdd27fbc2206a57dc520373f8b450b2 bs-column---default bs-column--right d-flex flex-column justify-content-end    \"><figure class=\"wp-block-post-featured-image\"><img decoding=\"async\" src=\"https:\/\/swimlane.com\/wp-content\/uploads\/MastheadMateriality.jpg\" class=\"attachment-post-thumbnail size-post-thumbnail wp-post-image\" alt=\"The &quot;Materiality&quot; Mystery: A CISO&#039;s Guide to SEC Compliance with Mike Lyborg\" style=\"object-fit:cover;\" srcset=\"https:\/\/swimlane.com\/wp-content\/uploads\/MastheadMateriality.jpg 1120w, https:\/\/swimlane.com\/wp-content\/uploads\/MastheadMateriality-300x182.jpg 300w, https:\/\/swimlane.com\/wp-content\/uploads\/MastheadMateriality-1024x621.jpg 1024w, https:\/\/swimlane.com\/wp-content\/uploads\/MastheadMateriality-768x466.jpg 768w\" sizes=\"(max-width: 1120px) 100vw, 1120px\" \/><\/figure><\/div>\n\n\n\n<div class=\" bs-column col-sm-12  col-md-12 col-lg-6   bs-column-6a13826d98ae006805bf00373c567a95c3c65a9a bs-column---default d-flex flex-column    \"><div class=\"wp-block-post-date\"><time datetime=\"2024-06-06T12:30:31-06:00\">Jun 6, 2024<\/time><\/div>\n\n<h1 class=\"wp-block-post-title has-text-color has-white-color\">The &#8220;Materiality&#8221; Mystery: A CISO&#8217;s Guide to SEC Compliance<\/h1>\n\n\n<div class=\"bs-div bs-div-f106fb945b2c4610a440b9e5b4f63c0c1cbbec02 bs-div---default\"><div class=\"bs-div__inner d-flex flex-wrap align-items-center    \">\n<a class=\"bs-post__author has-text-align-center\" href=\"https:\/\/swimlane.com\/es\/author\/Michael_Lyborg\/\">\n\t<div class=\"profile-desc\">\n\t\t<figure>\n\t\t\t<img decoding=\"async\" src=\"https:\/\/swimlane.com\/wp-content\/uploads\/lyborg.png\" alt=\"user-avatar\">\n\t\t<\/figure>\n\t\t<span class=\"prefix\"><\/span>\n\t\t<span class=\"name\">\n\t\t\tMichael Lyborg\t\t<\/span>\n\t<\/div>\n<\/a>\n\n\n\n<div class=\"reading-time\">\n    <span class=\"reading-time__time\">4 <\/span> Minute Read\n<\/div><\/div><\/div>\n<\/div>\n<\/div>\n<\/div><\/section>\n\n\n\n\n\n\n\n<section class=\"bs-section bs-section-050e6505c2b06c7ce9ca858e2f56661a365e6ba8 bs-section---default bs-section--blog-inner-main-contents  \"><div class=\"container\">\n<div class=\"bs-row row justify-content-between  bs-row---default\">\n<div class=\" bs-column col-sm-12 col-md-1   bs-column-b9d738473a055284b615b4f50be5a383dfe4cc38 bs-column---default     \"><div class=\"heateor_sss_sharing_container heateor_sss_horizontal_sharing\" data-heateor-ss-offset=\"0\" data-heateor-sss-href='https:\/\/swimlane.com\/es\/blog\/ciso-guide-to-sec-compliance\/'><div class=\"heateor_sss_sharing_ul\"><a aria-label=\"Email\" class=\"heateor_sss_email\" href=\"https:\/\/swimlane.com\/es\/blog\/ciso-guide-to-sec-compliance\/\" onclick=\"event.preventDefault();window.open('mailto:?subject=' + decodeURIComponent('The%20%22Materiality%22%20Mystery%3A%20A%20CISO%27s%20Guide%20to%20SEC%20Compliance').replace('&', '%26') + '&body=https%3A%2F%2Fswimlane.com%2Fes%2Fblog%2Fciso-guide-to-sec-compliance%2F', '_blank')\" title=\"Email\" rel=\"noopener\" style=\"font-size:32px!important;box-shadow:none;display:inline-block;vertical-align:middle\"><span class=\"heateor_sss_svg\" style=\"background-color:#649a3f;width:35px;height:35px;border-radius:999px;display:inline-block;opacity:1;float:left;font-size:32px;box-shadow:none;display:inline-block;font-size:16px;padding:0 4px;vertical-align:middle;background-repeat:repeat;overflow:hidden;padding:0;cursor:pointer;box-sizing:content-box\"><svg style=\"display:block;border-radius:999px;\" focusable=\"false\" aria-hidden=\"true\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"100%\" height=\"100%\" viewBox=\"-.75 -.5 36 36\"><path d=\"M 5.5 11 h 23 v 1 l -11 6 l -11 -6 v -1 m 0 2 l 11 6 l 11 -6 v 11 h -22 v -11\" stroke-width=\"1\" fill=\"#fff\"><\/path><\/svg><\/span><\/a><a aria-label=\"Twitter\" class=\"heateor_sss_button_twitter\" href=\"https:\/\/twitter.com\/intent\/tweet?text=A%20CISO%27s%20Guide%20to%20SEC%20Compliance%20%7C%20Swimlane&url=https%3A%2F%2Fswimlane.com%2Fes%2Fblog%2Fciso-guide-to-sec-compliance%2F\" title=\"Twitter\" rel=\"nofollow noopener\" target=\"_blank\" style=\"font-size:32px!important;box-shadow:none;display:inline-block;vertical-align:middle\"><span class=\"heateor_sss_svg heateor_sss_s__default heateor_sss_s_twitter\" style=\"background-color:#55acee;width:35px;height:35px;border-radius:999px;display:inline-block;opacity:1;float:left;font-size:32px;box-shadow:none;display:inline-block;font-size:16px;padding:0 4px;vertical-align:middle;background-repeat:repeat;overflow:hidden;padding:0;cursor:pointer;box-sizing:content-box\"><svg style=\"display:block;border-radius:999px;\" focusable=\"false\" aria-hidden=\"true\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"100%\" height=\"100%\" viewBox=\"-4 -4 39 39\"><path d=\"M28 8.557a9.913 9.913 0 0 1-2.828.775 4.93 4.93 0 0 0 2.166-2.725 9.738 9.738 0 0 1-3.13 1.194 4.92 4.92 0 0 0-3.593-1.55 4.924 4.924 0 0 0-4.794 6.049c-4.09-.21-7.72-2.17-10.15-5.15a4.942 4.942 0 0 0-.665 2.477c0 1.71.87 3.214 2.19 4.1a4.968 4.968 0 0 1-2.23-.616v.06c0 2.39 1.7 4.38 3.952 4.83-.414.115-.85.174-1.297.174-.318 0-.626-.03-.928-.086a4.935 4.935 0 0 0 4.6 3.42 9.893 9.893 0 0 1-6.114 2.107c-.398 0-.79-.023-1.175-.068a13.953 13.953 0 0 0 7.55 2.213c9.056 0 14.01-7.507 14.01-14.013 0-.213-.005-.426-.015-.637.96-.695 1.795-1.56 2.455-2.55z\" fill=\"#fff\"><\/path><\/svg><\/span><\/a><a aria-label=\"Facebook\" class=\"heateor_sss_facebook\" href=\"https:\/\/www.facebook.com\/sharer\/sharer.php?u=https%3A%2F%2Fswimlane.com%2Fes%2Fblog%2Fciso-guide-to-sec-compliance%2F\" title=\"Facebook\" rel=\"nofollow noopener\" target=\"_blank\" style=\"font-size:32px!important;box-shadow:none;display:inline-block;vertical-align:middle\"><span class=\"heateor_sss_svg\" style=\"background-color:#0765FE;width:35px;height:35px;border-radius:999px;display:inline-block;opacity:1;float:left;font-size:32px;box-shadow:none;display:inline-block;font-size:16px;padding:0 4px;vertical-align:middle;background-repeat:repeat;overflow:hidden;padding:0;cursor:pointer;box-sizing:content-box\"><svg style=\"display:block;border-radius:999px;\" focusable=\"false\" aria-hidden=\"true\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"100%\" height=\"100%\" viewBox=\"0 0 32 32\"><path fill=\"#fff\" d=\"M28 16c0-6.627-5.373-12-12-12S4 9.373 4 16c0 5.628 3.875 10.35 9.101 11.647v-7.98h-2.474V16H13.1v-1.58c0-4.085 1.849-5.978 5.859-5.978.76 0 2.072.15 2.608.298v3.325c-.283-.03-.775-.045-1.386-.045-1.967 0-2.728.745-2.728 2.683V16h3.92l-.673 3.667h-3.247v8.245C23.395 27.195 28 22.135 28 16Z\"><\/path><\/svg><\/span><\/a><a aria-label=\"Linkedin\" class=\"heateor_sss_button_linkedin\" href=\"https:\/\/www.linkedin.com\/sharing\/share-offsite\/?url=https%3A%2F%2Fswimlane.com%2Fes%2Fblog%2Fciso-guide-to-sec-compliance%2F\" title=\"Linkedin\" rel=\"nofollow noopener\" target=\"_blank\" style=\"font-size:32px!important;box-shadow:none;display:inline-block;vertical-align:middle\"><span class=\"heateor_sss_svg heateor_sss_s__default heateor_sss_s_linkedin\" style=\"background-color:#0077b5;width:35px;height:35px;border-radius:999px;display:inline-block;opacity:1;float:left;font-size:32px;box-shadow:none;display:inline-block;font-size:16px;padding:0 4px;vertical-align:middle;background-repeat:repeat;overflow:hidden;padding:0;cursor:pointer;box-sizing:content-box\"><svg style=\"display:block;border-radius:999px;\" focusable=\"false\" aria-hidden=\"true\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"100%\" height=\"100%\" viewBox=\"0 0 32 32\"><path d=\"M6.227 12.61h4.19v13.48h-4.19V12.61zm2.095-6.7a2.43 2.43 0 0 1 0 4.86c-1.344 0-2.428-1.09-2.428-2.43s1.084-2.43 2.428-2.43m4.72 6.7h4.02v1.84h.058c.56-1.058 1.927-2.176 3.965-2.176 4.238 0 5.02 2.792 5.02 6.42v7.395h-4.183v-6.56c0-1.564-.03-3.574-2.178-3.574-2.18 0-2.514 1.7-2.514 3.46v6.668h-4.187V12.61z\" fill=\"#fff\"><\/path><\/svg><\/span><\/a><\/div><div class=\"heateorSssClear\"><\/div><\/div>\n<\/div>\n\n\n\n<div class=\" bs-column col-sm-12  col-lg-8 col-md-11   bs-column-5fcbee853797bef68c609dd2715f511e3ead78a3 bs-column---default bs-column--contents     \">\n<h2 class=\"wp-block-heading\" id=\"h-from-one-ciso-to-another-your-guide-to-navigate-the-complexities-of-cybersecurity-materiality\">From One CISO to Another: Your Guide to Navigate the Complexities of Cybersecurity Materiality<\/h2>\n\n\n\n<p>In the ever-evolving landscape of cybersecurity, understanding materiality\u2014the significance of risks and their potential financial impact on an organization\u2014is paramount. Materiality in cybersecurity incidents is crucial because it involves significant financial implications for a company. Legal fees, regulatory fines, remediation costs, and customer notifications all contribute to the materiality of an incident.<\/p>\n\n\n\n<p>As we, as CISOs, grapple with increasingly sophisticated threats, our role becomes indispensable. In a recent podcast interview, I delved into the challenges organizations encounter regarding materiality and SEC compliance. I provided valuable insights into how we at <a href=\"https:\/\/swimlane.com\/\">Swimlane<\/a> effectively address these challenges and manage cybersecurity incident reporting.<\/p>\n\n\n\n<p>Keep reading to learn 13 key takeaways from our conversation and watch the full video here:<\/p>\n\n\n\n<figure class=\"wp-block-embed is-type-video is-provider-youtube wp-block-embed-youtube wp-embed-aspect-16-9 wp-has-aspect-ratio\"><div class=\"wp-block-embed__wrapper\">\n<iframe loading=\"lazy\" title=\"Unraveling the &quot;Materiality&quot; Mystery: A CISO&#039;s Guide to SEC Compliance - Mike Lyborg - BSW #347\" width=\"500\" height=\"281\" src=\"https:\/\/www.youtube.com\/embed\/NW4j5r2NvMQ?feature=oembed\" frameborder=\"0\" allow=\"accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture; web-share\" referrerpolicy=\"strict-origin-when-cross-origin\" allowfullscreen><\/iframe>\n<\/div><\/figure>\n\n\n\n<h2 class=\"wp-block-heading\">13 Key Takeaways for SEC Compliance<\/h2>\n\n\n\n<ol class=\"wp-block-list\">\n<li>Understand Materiality in Cybersecurity Incidents<\/li>\n<\/ol>\n\n\n\n<p>&nbsp;As CISOs, we understand that materiality in cybersecurity is about gauging the impact of incidents on our organization&#8217;s financial health, operations, and reputation. We need to assess costs, operational disruptions, and potential brand damage to ensure significant incidents are reported to regulators and stakeholders. This approach is essential for effective risk management and maintaining compliance.<\/p>\n\n\n\n<ol class=\"wp-block-list\" start=\"2\">\n<li>Set Baselines for Controls<\/li>\n<\/ol>\n\n\n\n<p>Combine regulations like <a href=\"https:\/\/dodcio.defense.gov\/CMMC\/About\/\">CMMC<\/a>, <a href=\"https:\/\/csrc.nist.gov\/pubs\/sp\/800\/53\/r5\/upd1\/final\">NIST 800-53<\/a>, and <a href=\"https:\/\/www.iso.org\/standard\/27001\">ISO 27001<\/a>. At Swimlane, we built a comprehensive set of controls, mapping these controls to a single system of record, encompassing all assets, including humans, devices, and cloud resources.&nbsp;<\/p>\n\n\n\n<ol class=\"wp-block-list\" start=\"3\">\n<li>Bridge the Gap Between Control and Risk Discussions\u00a0<\/li>\n<\/ol>\n\n\n\n<p>Quantify risk by mapping asset values to sensitivity levels and multiplying them by the likelihood of anomalies. We assess the potential impact, involving the finance team to understand the bottom-line implications.<\/p>\n\n\n\n<ol class=\"wp-block-list\" start=\"4\">\n<li>The Role of CFO and Risk Discussions<\/li>\n<\/ol>\n\n\n\n<p>Engaging the CFO in risk discussions involves translating technical risks into financial terms. We use probabilities, impacts, and tabletop exercises to quantify risks, ensuring clear roles and responsibilities across the entire executive team.<\/p>\n\n\n\n<ol class=\"wp-block-list\" start=\"5\">\n<li>Quantifying Risks in Dollar Terms<\/li>\n<\/ol>\n\n\n\n<p>While there&#8217;s no precise formula, we use a combination of probabilities, impacts, and customer data to estimate risks. Integrating data from our CRM allows us to assess potential exposures accurately.&nbsp;<\/p>\n\n\n\n<ol class=\"wp-block-list\" start=\"6\">\n<li>Defining Materiality Thresholds<\/li>\n<\/ol>\n\n\n\n<p>Determining materiality thresholds varies for each organization. While financial considerations are essential, factors like reputation and trust also play a significant role. Transparency and clear communication with stakeholders are crucial.<\/p>\n\n\n\n<ol class=\"wp-block-list\" start=\"7\">\n<li>The Complexity of Materiality\u00a0<\/li>\n<\/ol>\n\n\n\n<p>Materiality thresholds vary significantly between organizations. While some may base it solely on financial impact, others consider factors like reputation and stakeholder trust. The challenge lies in aligning diverse perspectives within the organization on what constitutes a material cybersecurity incident.<\/p>\n\n\n\n<ol class=\"wp-block-list\" start=\"8\">\n<li>Legal and Regulatory Considerations<\/li>\n<\/ol>\n\n\n\n<p>The recent implementation of new cybersecurity incident disclosure rules poses challenges for organizations. Even with established frameworks, many struggle to comply fully. The example of organizations like <a href=\"https:\/\/www.digitaljournal.com\/tech-science\/change-healthcare-hit-by-new-cyberattack\/article\">United Health<\/a> highlights the complexities of meeting regulatory requirements.&nbsp;<\/p>\n\n\n\n<ol class=\"wp-block-list\" start=\"9\">\n<li>Financial Impact vs. Investor Perception\u00a0<\/li>\n<\/ol>\n\n\n\n<p>Determining materiality isn&#8217;t just about financial losses but also about how incidents affect investor perception and stock prices. Transparency in reporting is crucial, as failure to disclose non-material events can lead to legal repercussions and worsen public perception.<\/p>\n\n\n\n<ol class=\"wp-block-list\" start=\"10\">\n<li>Customized Risk Assessment\u00a0<\/li>\n<\/ol>\n\n\n\n<p>It&#8217;s essential to have a customized approach to risk assessment. While frameworks like NIST 830 offer guidelines, each organization must tailor their methodology to assess the frequency and impact of potential incidents accurately.<\/p>\n\n\n\n<ol class=\"wp-block-list\" start=\"11\">\n<li>Hybrid Approach to Materiality<\/li>\n<\/ol>\n\n\n\n<p>The concept of materiality in cybersecurity incidents may require a hybrid approach, considering both quantitative and qualitative factors. While financial losses are essential, other considerations, such as reputation and stakeholder trust, also influence materiality determinations.<\/p>\n\n\n\n<ol class=\"wp-block-list\" start=\"12\">\n<li>The Role of Automation in Incident Response<\/li>\n<\/ol>\n\n\n\n<p>Leverage automation and playbooks to streamline <a href=\"https:\/\/swimlane.com\/blog\/incident-response\/\">incident response<\/a> processes. This allows for faster and more informed decision-making, enabling organizations to respond effectively to cybersecurity incidents and mitigate risks promptly. As I said on the podcast\u2026&nbsp;<\/p>\n\n\n\n<p><strong><em>\u201cAt Swimlane materiality is easier for us because we drink our own champagne. We have numerous automation <\/em><\/strong><a href=\"https:\/\/swimlane.com\/blog\/incident-response-playbook\/\"><strong><em>incident response playbooks<\/em><\/strong><\/a><strong><em> that take care of the brunt of the work so we can make an educated and informed decision and bring that to the leadership team.\u201d<\/em><\/strong><\/p>\n\n\n\n<ol class=\"wp-block-list\" start=\"13\">\n<li>Continuous Improvement Through Discussion<\/li>\n<\/ol>\n\n\n\n<p>Continuous improvement in incident response requires open discussions and collaborative efforts across departments. Regular tabletop exercises and war games help raise awareness and foster a culture of proactive risk management within the organization.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Closing Thoughts: Manage Incident Reporting and Meet SEC Compliance with AI-enhanced Security Automation&nbsp;&nbsp;<\/h2>\n\n\n\n<p>Now that you\u2019ve absorbed key insights, strategies, and best practices on cybersecurity materiality from my perspective, it&#8217;s time to take actionable steps to safeguard your digital assets and mitigate risks effectively. Remember, the pursuit of cybersecurity materiality isn&#8217;t just about implementing defensive measures; it&#8217;s about fostering a culture of vigilance and adaptability across your entire organization.<\/p>\n\n\n\n<p>As your organization navigates the complexities of cybersecurity incident reporting, let my insights serve as compass points, guiding you towards resilience and proactive risk management. The approach is straightforward: integrate legal, financial, and regulatory considerations. By fostering transparency, engaging stakeholders, and leveraging an AI-enhanced security automation platform like <a href=\"https:\/\/swimlane.com\/swimlane-turbine\/\">Swimlane Turbine<\/a>, you will enhance your incident response capabilities and mitigate risks effectively in today&#8217;s threat landscape.<\/p>\n\n\n\n<div class=\"bs-div bs-div-d3fa8be6518d9aef62c027ee30d5135f8b7c22ff bs-div---default bs-div--blog-inner-download-guide\"><style>.bs-div.bs-div-d3fa8be6518d9aef62c027ee30d5135f8b7c22ff {background-image: url(https:\/\/swimlane.com\/wp-content\/uploads\/2022\/10\/download-report.png); background-position: center center;\n    background-size: cover;} <\/style><div class=\"bs-div__inner d-flex flex-wrap justify-content-center  flex-md-row-reverse align-items-md-center justify-content-md-between flex-md-nowrap  \"><div class='media-elements bs-media-element---default enable'>    <div class='bs-common-image'>\n                            <figure class='figure justify-content-start d-flex'>\n                            <picture>\n                            \n                            <img src='https:\/\/swimlane.com\/wp-content\/uploads\/OG-Webpage-3.gif' class='img-fluid'   alt='roi report swimlane security automation' title='' data-gif= \"https:\/\/swimlane.com\/wp-content\/uploads\/OG-Webpage-3.gif\" \/>\n                            <\/picture>\n                                \n                            <\/figure>\n                        <\/div><\/div>\n\n\n<div class=\"bs-div bs-div-2aebcd1b2c11849d7c87d8462be32842b8c42b50 bs-div---default\"><div class=\"bs-div__inner     \">\n<h3 class=\"wp-block-heading\" id=\"h-are-the-fed-s-attempts-at-wrangling-incident-disclosure-effective\"><strong>Are the Fed\u2019s Attempts at Wrangling Incident Disclosure Effective?<\/strong><\/h3>\n\n\n\n<p>Download the full research report now to understand how these regulatory shifts are impacting security practices and compliance strategies. Read the report to learn more about how the regulatory environment is impacting cybersecurity strategies, priorities, and budgets.&nbsp;<\/p>\n\n\n\n<span class=\"bs-pro-button bs-pro-button---default bs-pro-button--primary-with-arrow-small bs-pro-button-p-btn-a381802cb155934408b1ffb7f30eb8fd44a88e75\"><style>.bs-pro-button-p-btn-a381802cb155934408b1ffb7f30eb8fd44a88e75 .bs-pro-button__container {background-color: #abb8c3; color: #000000;}<\/style><a href=\"https:\/\/swimlane.com\/resources\/reports\/cybersecurity-regulation-effectiveness\/\" target=\"_blank\" rel=\"noopener noreferrer\" class=\"bs-pro-button__container\">Download Report<\/a><\/span>\n<\/div><\/div>\n<\/div><\/div>\n<\/div>\n\n\n\n<div class=\" bs-column col-sm-12  col-md-12 col-lg-3   bs-column-4ffac197d945e44dadadc9d8f52ba4737135ba21 bs-column---default     \">\n<div class=\"bs-div bs-div-ffc71f24880cf5ca65c4a54e87fb14a656cc562d bs-div---default bs-div--tags\"><div class=\"bs-div__inner     \">\n<h2 class=\"wp-block-heading\" id=\"h-tags\">Tags<\/h2>\n\n\n<div class=\"post-tag-wrapper\">\n    <p><a href='https:\/\/swimlane.com\/es\/tag\/company\/'><span class='tag-content'>Company &amp; Culture<\/span><\/a><\/p><\/div>\n<\/div><\/div>\n\n\n\n<div class=\"bs-div bs-div-69c461f15bb5fa3fc09d1aa73a0e5865005218ff bs-div---default bs-div--related-posts\"><div class=\"bs-div__inner     \">\n<h2 class=\"wp-block-heading\" id=\"h-related-posts\">Related Posts<\/h2>\n\n\n\n<div class=\"bs-related-posts bs-related-posts-block---default\"><div class=\"bs-related-posts__container\"><div class=\"bs-related-posts__items\">\n<div class=\" bs-column col-sm-4   bs-column-4bb8c1b66cb5e72c43988fbaf017046daf38fc18 bs-column---default     \">\t\t\t\t\t<div class=\"bs-post bs-post-69dec809bbb91 bs-single-post---default enable\" >\n\t\t\t<a class=\"bs-post__trigger\" href='https:\/\/swimlane.com\/es\/blog\/top-soc-analyst-challenges\/' target='_self'>\t\t\t<div class=\"bs-post__inner\">\n\t\t\t\t<div class=\"bs-post__details\">    <div class=\"bs-post__date\">\n        <span>Nov 18, 2022<\/span>\n    <\/div>\n    <div class=\"bs-post__title\">\n        <h5>The Top SOC Analyst Challenges<\/h5>\n    <\/div>\n<div class=\"bs-post__learn-more\">\n    <span class='btn learn-more-text bs-post__learn-more-text'>Read More<\/span><\/div>\n<\/div>\t\t\t<\/div>\n\t\t\t<\/a>\t\t<\/div>\n\t<\/div>\n\n\n\n<div class=\" bs-column col-sm-4   bs-column-4bb8c1b66cb5e72c43988fbaf017046daf38fc18 bs-column---default     \">\t\t\t\t\t<div class=\"bs-post bs-post-69dec809bd088 bs-single-post---default enable\" >\n\t\t\t<a class=\"bs-post__trigger\" href='https:\/\/swimlane.com\/es\/blog\/incident-response-plans\/' target='_self'>\t\t\t<div class=\"bs-post__inner\">\n\t\t\t\t<div class=\"bs-post__details\">    <div class=\"bs-post__date\">\n        <span>Sep 20, 2017<\/span>\n    <\/div>\n    <div class=\"bs-post__title\">\n        <h5>Automating cybersecurity incident response plans<\/h5>\n    <\/div>\n<div class=\"bs-post__learn-more\">\n    <span class='btn learn-more-text bs-post__learn-more-text'>Read More<\/span><\/div>\n<\/div>\t\t\t<\/div>\n\t\t\t<\/a>\t\t<\/div>\n\t<\/div>\n\n\n\n<div class=\" bs-column col-sm-4   bs-column-4bb8c1b66cb5e72c43988fbaf017046daf38fc18 bs-column---default     \">\t\t\t\t\t<div class=\"bs-post bs-post-69dec809be278 bs-single-post---default enable\" >\n\t\t\t<a class=\"bs-post__trigger\" href='https:\/\/swimlane.com\/es\/blog\/nist-incident-response\/' target='_self'>\t\t\t<div class=\"bs-post__inner\">\n\t\t\t\t<div class=\"bs-post__details\">    <div class=\"bs-post__date\">\n        <span>Ene 31, 2018<\/span>\n    <\/div>\n    <div class=\"bs-post__title\">\n        <h5>Improving incident response with the NIST Cybersecurity Framework and security automation and orchestration (SAO)<\/h5>\n    <\/div>\n<div class=\"bs-post__learn-more\">\n    <span class='btn learn-more-text bs-post__learn-more-text'>Read More<\/span><\/div>\n<\/div>\t\t\t<\/div>\n\t\t\t<\/a>\t\t<\/div>\n\t<\/div>\n<\/div><\/div><\/div>\n<\/div><\/div>\n\n\n<\/div>\n<\/div>\n<\/div><\/section>\n\n\n\n<section class=\"bs-section bs-section-2a4a600ae9ab197b6a4ccafe05152bf1a2fde1d1 bs-section---default bs-section--newsletter bs-section--common-marketo-form bs-section--common-marketo-form-two-columns  \"><style>.bs-section.bs-section-2a4a600ae9ab197b6a4ccafe05152bf1a2fde1d1{ background-color: #000743;} <\/style><div class=\"container-fluid\">\n<div class=\"bs-row row   bs-row---default\">\n<div class=\" bs-column col-sm-0 col-md-0 col-lg-6   bs-column-df5e10bef85c15055718b4d93887855962017939 bs-column---default     \">\n<h2 class=\"wp-block-heading has-white-color has-text-color\" id=\"requestor\">Request a Live Demo<\/h2>\n<\/div>\n\n\n\n<div class=\" bs-column col-sm-0 col-md-0 col-lg-6   bs-column-df5e10bef85c15055718b4d93887855962017939 bs-column---default     \"><div class='media-elements bs-media-element---default enable'>    <div class='bs-common-image'>\n                            <figure class='figure justify-content-start d-flex'>\n                            <picture>\n                            \n                            <img src='https:\/\/swimlane.com\/wp-content\/uploads\/liitp.svg' class='img-fluid'   alt='' title=''  \/>\n                            <\/picture>\n                                \n                            <\/figure>\n                        <\/div><\/div>\n\n<script src=\"\/\/pages.swimlane.com\/js\/forms2\/js\/forms2.min.js\"><\/script>\n<form id=\"mktoForm_1017\"><\/form>\n<script>\n    var embeddedFormId = '05a6905d0187a23e165b2fd995e965fe15cb94f6';\n    var marketoBaseUrl = '\/\/pages.swimlane.com';\n    var munchkinId = '978-QCM-390';\n    var formId = '1017';\n    var responseType = 'redirect';\n    var responseMessage = 'Thank you!';\n    var redirectURL = '';\n    var downloadFileURL = '';\n    var linkOpenType = '_self';\n    var popupVideo = 'url';\n    var popupVideoURL = '';\n    var popupVideoUploadURL = '';\n    MktoForms2.loadForm(marketoBaseUrl, munchkinId, formId, function(form) {\n        form.onSuccess(function(values, followUpUrl) {\n            document.getElementById(\"int_mktoForm_\" + formId).innerHTML = responseMessage;\n                    });\n    });\n<\/script>\n<div class=\"form-submit-note\" id=\"int_mktoForm_1017\"><\/div>\n<!-- Incluing form response options -->\n\n\n\n<script>\n    (function() {\n        \/\/ Please include the email domains you would like to block in this list\n        var invalidDomains = [\"@gmail.\", \"@yahoo.\", \"@hotmail.\", \"@live.\", \"@icloud.\",\"@aol.\", \"@outlook.\", \"@proton.\", \"@mailinator.\"];\n\n\n        MktoForms2.whenReady(function(form) {\n            form.onValidate(function() {\n                var email = form.vals().Email;\n                if (email) {\n                    if (!isEmailGood(email)) {\n                        form.submitable(false);\n                        var emailElem = form.getFormElem().find(\"#Email\");\n                        form.showErrorMessage(\"Must be Business email.\", emailElem);\n                    } else {\n                        form.submitable(true);\n                    }\n                }\n            });\n        });\n\n        function isEmailGood(email) {\n            for (var i = 0; i < invalidDomains.length; i++) {\n                var domain = invalidDomains[i];\n                if (email.indexOf(domain) != -1) {\n                    return false;\n                }\n            }\n            return true;\n        }\n\n\n    })(); \n<\/script>\n<\/div>\n<\/div>\n<\/div><\/section>\n","protected":false},"excerpt":{"rendered":"","protected":false},"author":21,"featured_media":38722,"template":"","meta":{"_acf_changed":false,"show_custom_date":false,"custom_date":"","featured":true,"featured_image":38724,"learn_more_label":"","image_alt_text":"Explore materiality and SEC compliance in cybersecurity incidents. Learn the complexities of materiality, legal considerations & security automation's role in incident response.","learn_more_type":"","learn_more_link":[],"show_popup":false,"disable_iframe":false,"enable_lazy_loading":false,"learn_more_link_file":0,"event_date":false,"event_start_date":"","event_end_date":"","featured_page_list":[22],"_relevanssi_hide_post":"","_relevanssi_hide_content":"","_relevanssi_pin_for_all":"","_relevanssi_pin_keywords":"","_relevanssi_unpin_keywords":"","_relevanssi_related_keywords":"","_relevanssi_related_include_ids":"","_relevanssi_related_exclude_ids":"","_relevanssi_related_no_append":"","_relevanssi_related_not_related":"","_relevanssi_related_posts":"","_relevanssi_noindex_reason":"","inline_featured_image":false,"footnotes":""},"tags":[80],"resource-type":[67],"resource-topic":[],"resource-industry":[],"blog-category":[77],"class_list":["post-38721","sw_resource","type-sw_resource","status-publish","has-post-thumbnail","hentry","tag-company","resource-type-blogs","blog-category-platform"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v22.5 (Yoast SEO v27.1.1) - https:\/\/yoast.com\/product\/yoast-seo-premium-wordpress\/ -->\n<title>A CISO&#039;s Guide to SEC Compliance | Swimlane<\/title>\n<meta name=\"description\" content=\"Explore materiality and SEC compliance in cybersecurity incidents. Learn the complexities of materiality, legal considerations &amp; security automation&#039;s role in incident response.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/swimlane.com\/es\/blog\/guia-de-ciso-para-el-cumplimiento-de-la-sec\/\" \/>\n<meta property=\"og:locale\" content=\"es_ES\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"A CISO&#039;s Guide to SEC Compliance | Swimlane\" \/>\n<meta property=\"og:description\" content=\"Explore materiality and SEC compliance in cybersecurity incidents. Learn the complexities of materiality, legal considerations &amp; security automation&#039;s role in incident response.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/swimlane.com\/es\/blog\/guia-de-ciso-para-el-cumplimiento-de-la-sec\/\" \/>\n<meta property=\"og:site_name\" content=\"AI Security Automation\" \/>\n<meta property=\"article:modified_time\" content=\"2024-06-06T18:30:33+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/swimlane.com\/wp-content\/uploads\/Social_-Materiality-Myseter.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1200\" \/>\n\t<meta property=\"og:image:height\" content=\"627\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:title\" content=\"A CISO&#039;s Guide to SEC Compliance | Swimlane\" \/>\n<meta name=\"twitter:description\" content=\"Explore materiality and SEC compliance in cybersecurity incidents. Learn the complexities of materiality, legal considerations &amp; security automation&#039;s role in incident response.\" \/>\n<meta name=\"twitter:image\" content=\"https:\/\/swimlane.com\/wp-content\/uploads\/Social_-Materiality-Myseter.png\" \/>\n<meta name=\"twitter:site\" content=\"@swimlane\" \/>\n<meta name=\"twitter:label1\" content=\"Tiempo de lectura\" \/>\n\t<meta name=\"twitter:data1\" content=\"5 minutos\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/swimlane.com\/es\/blog\/ciso-guide-to-sec-compliance\/\",\"url\":\"https:\/\/swimlane.com\/es\/blog\/ciso-guide-to-sec-compliance\/\",\"name\":\"A CISO's Guide to SEC Compliance | Swimlane\",\"isPartOf\":{\"@id\":\"https:\/\/swimlane.com\/es\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/swimlane.com\/es\/blog\/ciso-guide-to-sec-compliance\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/swimlane.com\/es\/blog\/ciso-guide-to-sec-compliance\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/swimlane.com\/wp-content\/uploads\/MastheadMateriality.jpg\",\"datePublished\":\"2024-06-06T18:30:31+00:00\",\"dateModified\":\"2024-06-06T18:30:33+00:00\",\"description\":\"Explore materiality and SEC compliance in cybersecurity incidents. Learn the complexities of materiality, legal considerations & security automation's role in incident response.\",\"breadcrumb\":{\"@id\":\"https:\/\/swimlane.com\/es\/blog\/ciso-guide-to-sec-compliance\/#breadcrumb\"},\"inLanguage\":\"es\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/swimlane.com\/es\/blog\/ciso-guide-to-sec-compliance\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"es\",\"@id\":\"https:\/\/swimlane.com\/es\/blog\/ciso-guide-to-sec-compliance\/#primaryimage\",\"url\":\"https:\/\/swimlane.com\/wp-content\/uploads\/MastheadMateriality.jpg\",\"contentUrl\":\"https:\/\/swimlane.com\/wp-content\/uploads\/MastheadMateriality.jpg\",\"width\":1120,\"height\":679,\"caption\":\"Compliance theme with blurred city abstract lights background\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/swimlane.com\/es\/blog\/ciso-guide-to-sec-compliance\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/swimlane.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"The &#8220;Materiality&#8221; Mystery: A CISO&#8217;s Guide to SEC Compliance\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/swimlane.com\/es\/#website\",\"url\":\"https:\/\/swimlane.com\/es\/\",\"name\":\"Low-Code Security Automation & SOAR Platform | Swimlane\",\"description\":\"Agentic AI automation for every security function\",\"publisher\":{\"@id\":\"https:\/\/swimlane.com\/es\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/swimlane.com\/es\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"es\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/swimlane.com\/es\/#organization\",\"name\":\"Low-Code Security Automation & SOAR Platform | Swimlane\",\"url\":\"https:\/\/swimlane.com\/es\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"es\",\"@id\":\"https:\/\/swimlane.com\/es\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/swimlane.com\/wp-content\/uploads\/sw-inline-logo-color-white.svg\",\"contentUrl\":\"https:\/\/swimlane.com\/wp-content\/uploads\/sw-inline-logo-color-white.svg\",\"width\":912,\"height\":190,\"caption\":\"Low-Code Security Automation & SOAR Platform | Swimlane\"},\"image\":{\"@id\":\"https:\/\/swimlane.com\/es\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/x.com\/swimlane\",\"https:\/\/www.linkedin.com\/company\/swimlane\/\"]}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Gu\u00eda del CISO para el cumplimiento de la SEC | Swimlane","description":"Explore la materialidad y el cumplimiento normativo de la SEC en incidentes de ciberseguridad. Conozca las complejidades de la materialidad, las consideraciones legales y el papel de la automatizaci\u00f3n de la seguridad en la respuesta a incidentes.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/swimlane.com\/es\/blog\/guia-de-ciso-para-el-cumplimiento-de-la-sec\/","og_locale":"es_ES","og_type":"article","og_title":"A CISO's Guide to SEC Compliance | Swimlane","og_description":"Explore materiality and SEC compliance in cybersecurity incidents. Learn the complexities of materiality, legal considerations & security automation's role in incident response.","og_url":"https:\/\/swimlane.com\/es\/blog\/guia-de-ciso-para-el-cumplimiento-de-la-sec\/","og_site_name":"AI Security Automation","article_modified_time":"2024-06-06T18:30:33+00:00","og_image":[{"width":1200,"height":627,"url":"https:\/\/swimlane.com\/wp-content\/uploads\/Social_-Materiality-Myseter.png","type":"image\/png"}],"twitter_card":"summary_large_image","twitter_title":"A CISO's Guide to SEC Compliance | Swimlane","twitter_description":"Explore materiality and SEC compliance in cybersecurity incidents. Learn the complexities of materiality, legal considerations & security automation's role in incident response.","twitter_image":"https:\/\/swimlane.com\/wp-content\/uploads\/Social_-Materiality-Myseter.png","twitter_site":"@swimlane","twitter_misc":{"Tiempo de lectura":"5 minutos"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/swimlane.com\/es\/blog\/ciso-guide-to-sec-compliance\/","url":"https:\/\/swimlane.com\/es\/blog\/ciso-guide-to-sec-compliance\/","name":"Gu\u00eda del CISO para el cumplimiento de la SEC | Swimlane","isPartOf":{"@id":"https:\/\/swimlane.com\/es\/#website"},"primaryImageOfPage":{"@id":"https:\/\/swimlane.com\/es\/blog\/ciso-guide-to-sec-compliance\/#primaryimage"},"image":{"@id":"https:\/\/swimlane.com\/es\/blog\/ciso-guide-to-sec-compliance\/#primaryimage"},"thumbnailUrl":"https:\/\/swimlane.com\/wp-content\/uploads\/MastheadMateriality.jpg","datePublished":"2024-06-06T18:30:31+00:00","dateModified":"2024-06-06T18:30:33+00:00","description":"Explore la materialidad y el cumplimiento normativo de la SEC en incidentes de ciberseguridad. Conozca las complejidades de la materialidad, las consideraciones legales y el papel de la automatizaci\u00f3n de la seguridad en la respuesta a incidentes.","breadcrumb":{"@id":"https:\/\/swimlane.com\/es\/blog\/ciso-guide-to-sec-compliance\/#breadcrumb"},"inLanguage":"es","potentialAction":[{"@type":"ReadAction","target":["https:\/\/swimlane.com\/es\/blog\/ciso-guide-to-sec-compliance\/"]}]},{"@type":"ImageObject","inLanguage":"es","@id":"https:\/\/swimlane.com\/es\/blog\/ciso-guide-to-sec-compliance\/#primaryimage","url":"https:\/\/swimlane.com\/wp-content\/uploads\/MastheadMateriality.jpg","contentUrl":"https:\/\/swimlane.com\/wp-content\/uploads\/MastheadMateriality.jpg","width":1120,"height":679,"caption":"Compliance theme with blurred city abstract lights background"},{"@type":"BreadcrumbList","@id":"https:\/\/swimlane.com\/es\/blog\/ciso-guide-to-sec-compliance\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/swimlane.com\/"},{"@type":"ListItem","position":2,"name":"The &#8220;Materiality&#8221; Mystery: A CISO&#8217;s Guide to SEC Compliance"}]},{"@type":"WebSite","@id":"https:\/\/swimlane.com\/es\/#website","url":"https:\/\/swimlane.com\/es\/","name":"Automatizaci\u00f3n de seguridad de c\u00f3digo bajo y plataforma SOAR | Swimlane","description":"Automatizaci\u00f3n de la inteligencia artificial para todas las funciones de seguridad","publisher":{"@id":"https:\/\/swimlane.com\/es\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/swimlane.com\/es\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"es"},{"@type":"Organization","@id":"https:\/\/swimlane.com\/es\/#organization","name":"Automatizaci\u00f3n de seguridad de c\u00f3digo bajo y plataforma SOAR | Swimlane","url":"https:\/\/swimlane.com\/es\/","logo":{"@type":"ImageObject","inLanguage":"es","@id":"https:\/\/swimlane.com\/es\/#\/schema\/logo\/image\/","url":"https:\/\/swimlane.com\/wp-content\/uploads\/sw-inline-logo-color-white.svg","contentUrl":"https:\/\/swimlane.com\/wp-content\/uploads\/sw-inline-logo-color-white.svg","width":912,"height":190,"caption":"Low-Code Security Automation & SOAR Platform | Swimlane"},"image":{"@id":"https:\/\/swimlane.com\/es\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/swimlane","https:\/\/www.linkedin.com\/company\/swimlane\/"]}]}},"publishpress_future_workflow_manual_trigger":{"enabledWorkflows":[]},"_links":{"self":[{"href":"https:\/\/swimlane.com\/es\/wp-json\/wp\/v2\/sw_resource\/38721","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/swimlane.com\/es\/wp-json\/wp\/v2\/sw_resource"}],"about":[{"href":"https:\/\/swimlane.com\/es\/wp-json\/wp\/v2\/types\/sw_resource"}],"author":[{"embeddable":true,"href":"https:\/\/swimlane.com\/es\/wp-json\/wp\/v2\/users\/21"}],"version-history":[{"count":0,"href":"https:\/\/swimlane.com\/es\/wp-json\/wp\/v2\/sw_resource\/38721\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/swimlane.com\/es\/wp-json\/wp\/v2\/media\/38722"}],"wp:attachment":[{"href":"https:\/\/swimlane.com\/es\/wp-json\/wp\/v2\/media?parent=38721"}],"wp:term":[{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/swimlane.com\/es\/wp-json\/wp\/v2\/tags?post=38721"},{"taxonomy":"resource-type","embeddable":true,"href":"https:\/\/swimlane.com\/es\/wp-json\/wp\/v2\/resource-type?post=38721"},{"taxonomy":"resource-topic","embeddable":true,"href":"https:\/\/swimlane.com\/es\/wp-json\/wp\/v2\/resource-topic?post=38721"},{"taxonomy":"resource-industry","embeddable":true,"href":"https:\/\/swimlane.com\/es\/wp-json\/wp\/v2\/resource-industry?post=38721"},{"taxonomy":"blog-category","embeddable":true,"href":"https:\/\/swimlane.com\/es\/wp-json\/wp\/v2\/blog-category?post=38721"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}