The new SEC rules on cybersecurity risk management and incident disclosure will require publicly traded companies to reevaluate their security strategies and provide investors with a greater understanding of the cyber threats they face.