2. Risk Management Strategy Disclosure Requirements

  • Description of processes, if any, for the assessment, identification, and management of material risks from cybersecurity threats, including:
  • Whether and how processes have been integrated into the overall risk management system or processes


  • Engagements with assessors, consultants, auditors, or other third parties in connection with any such processes
  • Disclosure of whether any risks from cybersecurity threats have materially affected or are reasonably likely to materially affect their business strategy, results of operations, or financial condition.

3.Governance and Board Expertise Disclosure Requirements

  • Description of the board’s oversight of risks from cybersecurity threat and any devoted committees or subcommittees


  • Description of management’s role in assessing and managing the registrant’s material risks from cybersecurity threats which may include:
  • Management positions or committees are responsible for assessing and managing risks, and the relevant expertise of each person
  • Processes on how management is informed about and monitor the prevention, detection, mitigation, and remediation of cybersecurity incidents
  • How information about such risks to the board of directors or a committee or subcommittee of the board of directors.

Our Team

Vishal Chawla


Vishal is a former Big-4 partner and cybersecurity expert (CISSP) with over 25 years of experience serving clients in the financial services and healthcare.

Mark leverages his expertise in Enterprise Risk Management (ERM) to help address current and future risk challenges. He assists in developing and implementing best-in-class ERM frameworks, controls, and tools to achieve optimal risk management.

Shari Daw


Shari is an enterprise risk leader for Fortune 100 firms such as Discover Financial Services, Freddie Mac, JPMorgan Chase, ABN AMRO, and Bank of America.

Tom Chermack


Thomas Chermack, Founder of Chermack Scenarios, pioneers Scenario Planning, creating systems for insightful decision-making in complex and uncertain situations.

Dr.Tiffany Yates​


Dr. Yates is a leader in talent strategies that enhance business readiness by driving an innovative and systematic approach to deliver talent transformation.

Himanshi Mehra


Cloud and SaaS Security Expert with experience in consulting and industry, leading cloud security teams for Fortune 500 companies and architecting multi-cloud secure zones. 

Katie Reilly


Cybersecurity professional with industry experience varying from leading security efforts to security operations and incident response.