We live in a world where cybercrime has rapidly gone from science fiction to stark reality and it is becoming harder to expect that all hackers can be thwarted or as commonly declared “It’s not a matter of ‘if’ you’ve been hacked but a matter of ‘when’”. What then could the SEC do differently in the future to be better prepared for such an attack?