Comment Letter Trend: SEC Seeks Expanded Discussion of Board’s Role in Risk Oversight

February.13.2023

During 2022 the SEC issued at least 36 comment letters requesting expanded discussion about the board’s role in risk oversight. We summarize below the basic requirements of this disclosure and the most common new elements requested by the SEC through its comment letters issued during 2022. We encourage all issuers to consider these elements as they prepare for the 2023 proxy season.

As required by Item 407(h) of Regulation S-K, proxy statements addressing the election of directors must contain a discussion about “the extent of the board’s role in the risk oversight of the [company], such as how the board administers its oversight function, and the effect that this has on the board’s leadership structure.” In the 2009 adopting release for Item 407(h), the SEC provided the following additional guidance:

“This disclosure requirement gives companies the flexibility to describe how the board administers its risk oversight function, such as through the whole board, or through a separate risk committee or the audit committee, for example. Where relevant, companies may want to address whether the individuals who supervise the day-to-day risk management responsibilities report directly to the board as a whole or to a board committee or how the board or committee otherwise receives information from such individuals.”

Our review of the comment letters issued during 2022 requesting expanded Item 407(h) disclosures suggests the SEC now also expects a discussion of the following common elements:

Whether and why a company’s board would choose to retain direct oversight responsibility for certain material risks (particularly cybersecurity, ESG and sustainability related risks) rather than assign oversight to a board committee;
The timeframe over which a company evaluates risks (e.g., short-term, intermediate-term, or long-term) and how a company applies different oversight standards based upon the immediacy of the risk assessed;
Whether a company consults with outside advisors and experts to anticipate future threats and trends, and how often it reassesses its risk environment;
How a company’s board interacts with management to address existing risks and identify significant emerging risks;
Whether a company has a Chief Compliance Officer, or person serving in a similar role, and to whom this position reports; and
How a company’s risk oversight process aligns with its disclosure controls and procedures.

Given the frequency of these comments over the past year, issuers should consider addressing the above elements in their discussion of the board’s role in risk oversight. Companies with material cybersecurity risk or with publicly made statements about climate risks should take particular care to address the first element listed above with respect to those types of risks in their discussion of the board’s role in risk oversight.

Authors

J. T. Ho Partner, Corporate Governance, Capital Markets

San Francisco

See my bio

D:+1 415 773 5624
E: [email protected]

Practice:

Corporate Governance
Capital Markets
Compensation & Benefits
Environmental, Social & Corporate Governance (ESG)

vCard

See full bio

J. T. Ho Partner

San Francisco

J.T. counsels companies on Board and committee oversight, assessment and composition issues, developing effective shareholder engagement programs and governance-related disclosures, and helps companies to understand and consider the views of proxy advisors and institutional shareholders and other long-term stakeholders in their decision making. Recently, he has helped many companies successfully address ESG related shareholder proposals and activism campaigns and refine their disclosure controls and procedures and enterprise risk management programs to address cybersecurity and climate risk.

On the securities front, he focuses on advising clients in connection with securities offerings, proxy statements, periodic SEC reports, stock exchange listing obligations, stock repurchases and the sale and reporting of securities by insiders. He regularly counsels companies on difficult disclosure issues and provides training on disclosure best practices.

J.T. also advises on compensation committee matters and related disclosures as well as the design of cash and equity incentive plans, and has helped over a dozen companies remediate failed or low "say on pay" votes.

J.T. plays a leading role in Orrick’s ESG practice, helping companies identify and understand the risks and opportunities associated with ESG and incorporating ESG into a company’s overall business strategy and incentive plans. More recently, he has helped companies navigate the growing anti-ESG movement.

J.T. serves on the advisory board of The Corporate Counsel and hosts J.T.'s Fast Five, a monthly podcast on The Corporate Counsel where J.T. covers the five things public companies ought know each month. J.T. Ho also regularly presents on and contributes articles related to corporate governance, securities, executive compensation and ESG. He has presented at notable conferences sponsored by The Corporate Counsel, the Securities Regulation Institute, The Rock Center for Corporate Governance, the Society for Corporate Governance, the ABA, the Practical Law Institute, Compensation Standards, Practical ESG and NASPP. He is recognized as a Next Generation Partner by Legal 500, as one of the Ones to Watch® Best Lawyers in America, and was named a Rising Star by Super Lawyers in 2018, 2019, 2020, 2021 and 2022.

Hong Tran Managing Associate, Corporate Governance, Environmental, Social & Corporate Governance (ESG)

Houston

See my bio

D:+1 713 658 6452
E: [email protected]

Practice:

Corporate Governance
Environmental, Social & Corporate Governance (ESG)
Capital Markets

vCard

See full bio

Hong Tran Managing Associate

Houston

Hong has served clients in a range of industries such as biopharmaceutical, financial services, technology, energy, and real estate.

Hong advises pro bono clients on immigration, reproductive justice, climate equity, qualified immunity and veterans law.

Bobby Bee Practice Support Counsel, Capital Markets

New York

See my bio

D:+1 212 506 5000
E: [email protected]

Practice:

Capital Markets

vCard

See full bio

Bobby Bee Practice Support Counsel

New York

Prior to joining Orrick, he was with Lowenstein Sandler LLP from 2015 to 2022, with a practice focusing on public company governance matters and securities law compliance, including reporting and disclosure obligations under the Securities Exchange Act of 1934. He also advised companies regarding capital markets transactions including IPOs, SPACs, follow-on offerings, shelf registrations, and private placements.

Prior to Lowenstein Sandler LLP, Bobby’s experience included positions as a tax senior for Deloitte Tax LLP and a financial statement audit senior for Deloitte & Touche.