The U.S. Securities and Exchange Commission on Feb. 21 voted unanimously to approve its commission statement and guidance on public company cybersecurity disclosures. The guidance highlights the need for cybersecurity disclosures based on current reporting obligations and the materiality standard, identifies specific cybersecurity risk factors, and emphasizes two new areas of focus concerning the adoption by public companies of appropriate policies and procedures to address cybersecurity matters and to enforce insider trading prohibitions.