Sidley lawyers David Lashway, John Woods, Jennifer Seale, and Francesca Blythe have authored the chapter “Complying with regulatory requirements and SEC guidance” within The Guide to Cyber and Data Privacy Investigations - Fourth Edition.
Businesses face a myriad of international cyber regulations that vary widely by jurisdiction, each with its own scope, requirements, and enforcement approach. Companies must map their global operations against an increasingly non-homogenised and nuanced legal and regulatory regime, where direct conflicts between differing national regimes can make compliance in this environment quite difficult, and these laws and regulations increasingly impose substantial costs for noncompliance.
This chapter provides an overview of the current cybersecurity regulatory landscape and notable compliance challenges. We highlight why cybersecurity can present unique challenges, note certain regulatory and compliance regimes across the global cybersecurity legal landscape, outline strategies that can inform a robust cybersecurity regulatory compliance programme, and conclude with consideration of emerging issues and the significance of defensive compliance.
This article was first published on Global Investigations Review in July 2025; for further in-depth analysis, please visit GIR - Guide to Cyber and Data Privacy and Investigations.
