Senior Honors Projects, 2010-current

Creative Commons License

Creative Commons License
This work is licensed under a Creative Commons Attribution-Noncommercial-No Derivative Works 4.0 License.

Date of Award

Fall 2015

Document Type


Degree Name

Bachelor of Business Administration (BBA)


School of Accounting


Sandra Cereola


On October 13, 2011, the U.S. Securities and Exchange Commission issued a guidance on corporate disclosure of cyber-risks and information security breaches (SEC, 2011). To determine if a company disclosed information on the breach, I reviewed the company’s risk factors, management’s discussion and analysis of financial conditions and results of operations, description of the business, legal proceedings, financial statement disclosures, and disclosure controls and procedures. However, the disclosure regulations from this guidance are vague and thus do little to force disclosure of valuable information. The guidance has led to companies disclosing ambiguous, generic risk factors that can be applied to any business in any industry (Ferraro, 2014).



To view the content in your browser, please download Adobe Reader or, alternately,
you may Download the file to your hard drive.

NOTE: The latest versions of Adobe Reader do not support viewing PDF files within Firefox on Mac OS and if you are using a modern (Intel) Mac, there is no official plugin for viewing PDF files within the browser window.