Public Company Reporting Requirements

The best defense is a good (funding) offense. Investors, governments, and builders are all in on defense tech. In recent weeks, we saw major deals and announcements including Anduril's oversubscribed $2.5B Series G, Anthropic's release of defense-specific models, and Impulse Space's $300M Series C. 🚀 Defense tech is having a breakout year – on track for a record-breaking year with projected investor participation up 31% YoY to nearly 1,000 unique investors. This surge represents the highest level of investor interest ever recorded in the sector. The momentum is particularly striking given broader venture market headwinds, signaling that defense tech has become a must-have allocation for institutional portfolios. 💸 The investor base is diversifying beyond traditional defense-focused funds, with generalist VCs like a16z and 8VC developing specific theses in the sector. These investors bring Silicon Valley playbooks — rapid iteration, software scalability, and platform thinking — to an industry historically dominated by slow-moving defense primes. This cross-pollination is accelerating innovation cycles from years to months in critical areas like autonomous systems manufacturing. 🌏 Geopolitical tensions and the Ukraine conflict have validated the strategic importance of defense tech, driving both government and private capital allocation. Earnings call mentions of "defense" reached an all-time high in Q1 2025, while major tech companies and the hottest AI startups are forming consortiums to compete for DoD contracts. This mainstreaming of defense tech reduces reputational risk for investors and opens institutional capital pools previously unavailable to the sector. In chatting with Justin Fanelli (CTO, Department of Navy), it is clear that the increased investor and builder is fueled by the government's increasingly innovation-forward appetite. "Investors and founders who have backed this sector and mission have moved the needle for national security, even while we've been slow, reluctant buyers. We are now overhauling the way we buy at scale. We have shifted many buyer orgs from program offices to more flexible portfolios. This is one of several ways we're putting far more emphasis on impact and value. Innovation adoption and commercial-first pushes have already made us more adaptive and resilient. We want a wider base of high performers. What's better than competition to serve those who serve all Americans better? Recent AI and raise news shows there's more room to make bigger impacts. If we nail this, I think it's fair to expect impact and investment will continue to grow." Curious about the defense tech markets and companies seeing the most interest? Explore the data and insights for *free* in the comments.

Defense Tech Just Broke Every VC Record. $38B Says Silicon Valley Found Its Next Gold Rush. 2025 isn't just another funding year. It's the inflection point where venture capital reshapes defense. Global defense tech pulled $7.7B across 100 deals. U.S. startups alone captured $38B through mid-year. Ten rounds exceeded $200M each. The math speaks volumes: Startups now claim 1.3% of Pentagon contracts, up from 0.6% last year. Private equity surged with defense M&A hitting 125 deals in Q3, a 30% year-over-year jump. Who's writing checks? Andreessen Horowitz, Founders Fund, Lux Capital, Battery Ventures, Coatue. They're not betting on missiles. They're betting on autonomy. The mega-rounds tell the story. • Anduril: $2.5B at $30.5B valuation—autonomous everything • Chaos Industries: $510M for AI-powered radar meshes • Saronic: $600M for robot boats that hunt in packs • Helsing: $489M bringing European AI to battlefields Notice the pattern? Software eating hardware. Autonomy replacing humans. Decision cycles compressed from hours to seconds. Border security became the unexpected catalyst. Trump's sovereignty push transformed military tech into homeland tools. Anduril's 300+ surveillance towers now watch Arizona. AI that tracked ISIS finds fentanyl smugglers. Counter-drone systems built for Ukraine intercept cartel deliveries. CBP's fentanyl seizures surge with AI assistance. Autonomous surveillance towers in the Big Bend Sector never blink. Predictive analytics flag suspicious vehicles before they cross. The Western Hemisphere pivot changes everything. Cartels use drones for smuggling, surveillance, and prison drops. Our response: the same swarm tech defeating Russian armor, repurposed for narco-terror. Ukraine proved the model. Robot-on-robot warfare. Persistent surveillance. Force multiplication through autonomy. What works in Bakhmut works in El Paso. VCs see what Pentagon procurement missed: Speed beats perfection. Commercial beats custom. When startups deliver capability in months while primes debate requirements for years, capital follows velocity. Defense tech captured more VC dollars than biotech $19B vs $16.6B. That's never happened before. Is your portfolio still chasing SaaS multiples or building tomorrow's deterrence? ---------- Like this content? Join our newsletter. Link located below my name 👆

I’m thrilled to share that our paper, "Opening Up Military Innovation: Causal Effects of Reforms to US Defense Research," co-authored with the brilliant Sabrina Howell, John Van Reenen, and Jun Wong, has been officially published in the Journal of Political Economy. For decades, the conventional wisdom in government R&D procurement has been for the government to tightly specify the products it wants. Think of the Henry Ford quote: "If I had asked people what they wanted, they would have said faster horses". Our research explores what happens when the government stops asking for "faster horses" and instead opens the door for industry to propose the "automobile." We studied the US Air Force Small Business Innovative Research (SBIR) program (e.g., R&D for small businesses) where two approaches were run simultaneously: a conventional model with highly specific topics and a new open model where firms could propose any technology they thought the Air Force might need. Using a sharp regression discontinuity design, we uncovered striking causal effects for companies that won an open topic award. These companies saw significant, tangible economic benefits: * 📈 A 12 point increase in the probability of receiving subsequent Venture Capital investment * 🚀 An 11.4 point increase in winning larger, non-SBIR Department of Defense (DoD) contracts, a key measure of military adoption and scale. * 💡 An 8.9 point increase in securing a patent and a 7 point increase in securing a high-originality patent, signaling novel innovation. In stark contrast, winning a conventional award had no positive effects on commercial innovation or military adoption. In fact, its main effect was increasing the chances of winning another small SBIR award, a form of program "lock-in”. Our research demonstrates that the open approach doesn't just work by attracting different firms; the open incentive structure itself drives greater innovation. It provides an avenue for firms to identify technological opportunities the government isn't yet aware of, creating an entry point to much larger public sector contracts and private investment. This work has powerful implications for how we procure innovation across the public sector. I'm incredibly proud of what our team accomplished and hope it contributes to building a more dynamic and innovative industrial base. You can read the full paper here: [https://lnkd.in/eV7uEqeH] #Innovation #Economics #NationalSecurity #DefenseTech #SBIR #VentureCapital #DualUse #AirForce #JPE

Does a global cyber outage qualify as a "material cybersecurity incident"? This is the question hundreds of companies are grappling with this week. Under the SEC cyber rule, public companies are required to promptly disclose material cybersecurity incidents under Item 1.05 of Form 8-K. If the company is unsure whether the incident is material, the SEC released guidance that those incidents should be reported under Item 8.01. But what is a "material cybersecurity incident"? "Material" - Limits the information required to be furnished to those matters about which an average prudent investor ought reasonably to be informed before purchasing a security. "Cybersecurity Incident" -  An unauthorized occurrence, or a series of related unauthorized occurrences, on or conducted through a registrant’s information systems that jeopardizes the confidentiality, integrity, or availability of a registrant’s information systems or any information residing therein.  Late last week, CrowdStrike released a faulty driver update for its flagship Endpoint Detection and Response tool, Falcon. Drivers operate at the kernel level of a computer, a critical and highly controlled part of the system. Typically, software avoids running in the kernel to prevent system crashes that can lead to data corruption. This corruption impacted any Windows 10 machine running Falcon-roughly 9 million devices. However, since these were mainly enterprise machines, the crashes occurred at airports, banks, healthcare facilities, government agencies, and other locations, resulting in an extensively publicized outage. Over the past 5 days, CrowdStrike's stock value plunged more than 25% as a direct result of this event. On Monday, CrowdStrike filed a Form 8-K under Item 8.01 and not Item 1.05-indicating they had not determined this to be a "material cybersecurity incident." How could that be? The answer is in the definition. This is certainly a "material" event, as evidenced by the more than 25% drop in stock value. But is it a "cybersecurity incident"? The SEC's definition turns on an "unauthorized occurrence." While a threat actor need not be involved, the occurrence itself must be unauthorized-a fire at a datacenter, for instance, could qualify. CrowdStrike's update, though faulty, was authorized. As such, it may not fall within the ambit of the SEC rule. Erring on the side of transparency, CrowdStrike reported this incident through the most legally sufficient vehicle available - Item 8.01. What does this mean for CrowdStrike's public customers impacted by this event? Other companies should consider a range of factors when assessing whether this incident materially impacted them, such as: -Reputational harm -Remediation costs -Legal risks -Lost revenues -Insurance Importantly, these should also be placed in the context of a global cyber outage - e.g., what is the reputational damage to single company amongst thousands impacted? This will be unique to each company --

🌍 As private equity firms manage trillions of dollars globally, how do they communicate their sustainability efforts? More importantly, do their disclosures actually reflect tangible environmental and social impacts? These critical questions are tackled in a new study by Jefferson Kaduvinal Abraham, Marcel Olbert, and Florin V. titled "ESG Disclosures in the Private Equity Industry, published in the Journal of Accounting Research (2024). This terrific paper systematically examines how private equity (PE) firms report on environmental, social, and governance (ESG) practices and whether these reports align with real outcomes. Here are the key findings: 1️⃣ Growing ESG Transparency: Using data from 5,468 PE firms between 2000 and 2022, the paper shows a significant increase in voluntary ESG disclosures on firms' websites, particularly after 2011. PE firms are increasingly discussing social and environmental issues alongside governance, with social topics recently surpassing environmental ones. 2️⃣ Demand from Investors: The paper finds that fund investors (Limited Partners, LPs) with ESG preferences are a major driver of increased disclosures. When PE firms raise capital, ESG transparency spikes, especially from firms aiming to attract LPs with strong sustainability commitments. 3️⃣ Positive ESG Outcomes: PE firms that disclose more ESG information also tend to have better ESG performance in their portfolio companies. For example, companies acquired by PE firms with high environmental disclosures saw reductions in emissions and chemical releases of up to 26%. 4️⃣ ESG Outcomes: The study shows that PE firms with more comprehensive ESG disclosures tend to deliver stronger outcomes, suggesting that these disclosures are credible and not merely for appearance, despite concerns about greenwashing in the industry. 📊 Implications: The authors highlight several important implications of their findings. For investors, the research underscores the value of scrutinizing ESG disclosures when allocating capital, as these disclosures are linked to real-world performance. For regulators, the study provides evidence supporting the case for more standardized ESG reporting requirements across the private equity sector. This could help mitigate the risks of greenwashing while promoting genuine improvements in sustainability practices across portfolio companies. 🌱 As ESG issues become more central to private capital, these findings are critical for investors and regulators alike. This important piece of research underscores the need for transparent and reliable ESG reporting, not just to attract capital, but also to drive real-world improvements in sustainability. #ESG #PrivateEquity #Sustainability #CorporateTransparency #ResponsibleInvesting 📖 Read the full paper here: https://lnkd.in/eNKAMqqM

Overview of data requirements of ESRS: The information companies need to provide, assess and report if they find ESRS material (high-level summary) The European Sustainability Reporting Standards (ESRS), under the Corporate Sustainability Reporting Directive (CSRD), provide a structured framework for companies to disclose sustainability-related information. This chart presents reporting requirements across ESRS, categorizing sustainability topics into environmental (E), social (S), and governance (G) dimensions, including sub-topics. However, this is not the full picture, as companies must also conduct a materiality assessment to provide relevant information for stakeholders. It highlights where policies, actions, targets, transition plans, and key metrics are mandatory. At a topical level, if an organization deems a data point immaterial, it does not have to report on it. A sustainability topic must typically be reported under a specific disclosure requirement to become actionable. Reliable reporting requires diligent systems, operating procedures, and data manuals. Companies must conduct a double materiality assessment to determine whether a sustainability matter has a significant financial impact or affects people and the environment. The chart outlines ESRS reporting requirements, including policies, actions, targets, and transition plans. For example, Environmental Topics (E1-E5) require both policies and targets for CSRD compliance and GHG reductions, and a reporting on plans, investments, and levers (by e.g., including CapEx and OpEx-planning from EU taxonomy). Gaps exist between commitments and implementation. However, since CSRD is a reporting directive, it does not mandate specific actions. Sustainability reporting must go beyond commitments and include measurable actions. Each policy should have specific objectives linked to measurable targets for accountability. The Social Standards (ESRS S1-S4) and Governance Standard (G1) are policy-based. CSRD and ESRS require reporting on human rights, labor conditions, and social responsibility, referencing OECD and UNGP. SMEs must prepare for extended supplier reporting obligations. Policies must be implemented via transition or action plans to support long-term sustainability. Companies must assign accountability for each material sustainability matter. Hopefully once implemented and transposed, the Corporate Sustainability Due Diligence Directive (CSDDD) will work alongside CSRD, requiring businesses to integrate ESG into corporate governance. Looking forward to see a lot of new ESRS reports in the coming months!

📌️ ESG Reporting A to Z ESG (Environmental, Social, and Governance) reporting is a framework for companies to disclose their sustainability and ethical impact. It tracks everything from carbon footprint to fair labor practices, giving stakeholders a clear picture of whether a company is future ready or just chasing short term gains. With growing regulatory mandates (like the EU’s CSRD) and 85% of investors now factoring ESG into decisions, transparency is no longer optional but a competitive advantage. ESG reporting builds trust, mitigates risks, and attracts stakeholders who prioritize sustainability. Studies show that 66% of consumers prefer eco conscious brands, while employees seek purpose driven workplaces. As global regulations increase, businesses that adopt strong ESG practices succeed and add long term value. The future of business is accountable, and ESG reporting is leading the way. • Assurance: Third party verification to boost credibility (e.g., AA1000AS Standard). • Board & Governance: Oversight of ESG strategy and risks. • Compliance & Regulations: Meeting mandatory disclosure rules (e.g., CSRD in EU, SEC rules in US). • Double Materiality: Reporting on how sustainability affects the company (outside-in) AND the company's impact (inside-out). • Environmental: Climate, emissions, waste, water, biodiversity. • Frameworks: GRI, SASB, TCFD, CDP, ISSB. • Governance: Ethics, leadership, board diversity, executive pay. • Holistic View: Integrating ESG into overall business strategy. • Inclusivity: Engaging diverse stakeholders (employees, customers, investors). • Journey: ESG is an ongoing process, not a one off report. • Knowledge: Building internal expertise on ESG reporting. • Latest Trends: Staying ahead of evolving investor & regulatory demands (e.g., Gen Z demands). • Materiality Assessment: Identifying financially significant ESG issues for your industry. • Net Zero/Decarbonization: Key environmental goals and strategies. • Operational Integration: Making ESG part of core business, not separate. • Pillars: The core E, S, and G (and sometimes Reporting/Integration). • Quality Data: Ensuring accuracy, timeliness, and reliability. • Reporting: The act of disclosure (e.g., step-by-step guide). • Social: Labor practices, human rights, diversity, community impact. • Target Setting: Creating measurable goals (e.g., science based targets). • Understanding Requirements: Knowing what your specific regulations demand. • Value: Demonstrating financial value and risk management. • Working Groups: Cross functional teams to manage reporting. • X-Factor: The competitive advantage companies gain by embedding ESG into their core strategy. • Yield: Investor returns linked to strong ESG performance. • Zero Waste/Carbon: Ambitious environmental goals. #ESG #ESGReporting #Sustainability #SustainableBusiness #ResponsibleBusiness #Decarbonization #ImpactInvesting

How do companies show they care about the planet and people? I recently explored how organizations share their environmental, social, and governance (ESG) practices with the world. It’s fascinating how these disclosures have moved from being "nice-to-have" reports to becoming essential for building trust with stakeholders. Take a moment to think about this: 90% of S&P 500 companies now publish sustainability reports. Why? Because people want to see action, not just promises. Investors, customers, and even employees are paying attention to how businesses impact the world. But here’s the challenge: ESG reporting isn’t one-size-fits-all. Companies use different frameworks like -GRI. -SASB. -TCFD. To tell their story. Some focus on carbon footprints, others on diversity or ethical supply chains. Each approach reveals what that company values most. So, how do you make sense of it all? Here’s what I suggest: 1️⃣ Start by exploring ESG reports on corporate websites. You'll see how different companies communicate their efforts—some focus on storytelling, while others dive deep into data. 2️⃣ Visit framework sites (like GRI.org or SASB.org). They offer free resources that explain what to include in an ESG report. 3️⃣ Get curious about your organization. How transparent are they about ESG? Can you play a role in shaping that narrative? For me, understanding ESG isn’t just about compliance or ticking boxesit’s about creating real, lasting change. When done right, these disclosures not only reduce liabilities but also inspire trust and spark innovation within organizations. What’s one ESG report you’ve found inspiring or surprising? Share it in the commentsI'd love to hear your perspective! 💬 Let’s keep the conversation going. If you’re passionate about ESG or want to learn more, feel free to follow me on LinkedIn or subscribe to my newsletter. We can push for transparency, accountability, and a brighter future. 🌟

🌍 Balancing #ESG Reporting and Operations: A Strategic Imperative for Long-Term Value 🌍 As businesses worldwide increasingly commit to sustainability, balancing ESG (Environmental, Social, and Governance) reporting with operational priorities has become essential. However, finding harmony between delivering transparent ESG insights and meeting business performance goals is no small feat. Key steps for integrating ESG effectively: 1️⃣ Align ESG with Core Strategy: Embed ESG goals directly within your strategic objectives. This ensures that sustainability isn't seen as an afterthought but as a driver of competitive advantage and resilience. 2️⃣ Invest in Data-Driven Solutions: Leveraging technology and data analytics allows for more accurate and real-time ESG reporting. It also helps identify efficiency opportunities that can improve operations while reducing environmental impact. 3️⃣ Cross-Functional Collaboration: ESG goals span multiple areas—from supply chain to human resources. Encourage a collaborative approach across departments to ensure ESG initiatives are both achievable and measurable. 4️⃣ Transparent Communication: Authentic ESG reporting builds trust with stakeholders. By sharing both successes and areas for improvement, companies foster transparency and accountability, which are crucial for sustainable growth. In a landscape where stakeholders demand accountability and transparency, aligning ESG reporting with operational realities is not only a compliance measure but a strategic opportunity. By thoughtfully integrating ESG considerations into operations, companies can create shared value for all stakeholders and position themselves as resilient, forward-thinking leaders. Directors' Institute - World Council Of Directors Veblen Director Programme "MentorMyBoard" Bloggers Alliance #Sustainability #ESG #percyvaid #Transparency #SustainableGrowth

BIG NEWS! At today's open meeting of the SEC, the SEC Commissioners voted to adopt the SEC's proposed cybersecurity rules on a split three to two vote. While we have yet to see the written rules, here are my initial takeaways from today's meeting:   1. DISCLOSURE TIMING: The SEC emphasized that the disclosure requirement would be four business days from the time that a breach is determined to be "material"--not four days from learning of the breach. The SEC recognized that the determination that an incident is "material" may take some time, in part, because the Company may lack sufficient information to make the materiality determination at the outset. 2. DISCLOSURE CONTENT: The new rule apparently "streamlines" specifically what registrants must disclose about an incident. Now registrants would be required to disclose the material aspects of the nature, scope, and timing of the incident, as well as the incident's material impact or reasonably likely material impact.   3. DELAYED DISCLOSURE: The SEC has implemented a new process for registrants to delay disclosure of material incidents. If the U.S. Attorney General (the AG) determines that disclosure poses a substantial risk to national security or public safety and notifies the SEC of such a determination, the AG would be able to trigger a disclosure delay for an initial period of up to 30 days, followed by a 30-day extension, and a final extension of up to 60 days. The SEC would also consider additional disclosure delays, as requested by the AG. The SEC has apparently worked with AG to set up an interagency communication channel to support rapid extensions. While the SEC didn't mention it, this provision would give registrants an additional incentive to contact the FBI or DOJ soon after learning of an incident.   4. MATERIALITY: The SEC seems to have softened its requirement that registrants disclose immaterial incidents that are nonetheless material in the aggregate. Now the otherwise immaterial incidents must be "related" to each other to require reporting, such as attacks by the same cyber actor, or by exploiting the same vulnerability.     5. BOARD EXPERTISE: While the original proposal would have required registrants to identify any member of the board of directors who has cybersecurity experience and describe such expertise, the updated rules do not contain any such board expertise and disclosure requirements. Instead, the rules require disclosure of the relevant expertise of any members of management or committees that are responsible for assessing and managing registrants' material cyber risks.    6. EFFECTIVE DATE: It sounded like most registrants would be required to file annual reports in compliance with the new rule beginning Dec 15, 2023, with certain smaller organizations filing reports beginning June 15, 2024. The new incident disclosure requirements would go into effect for material incidents occurring after December 18, 2023.