Eterna Therapeutics Inc. - (ERNA)

10-K Filing Date: March 14, 2024
ITEM 1C.
Cybersecurity
 
Risk Management and Strategy

We have established policies and processes for assessing, identifying, and managing material risk from cybersecurity threats, and have integrated these processes into our overall risk management systems and processes. We monitor cybersecurity threats, including any potential unauthorized occurrence on or conducted through our information systems that we use through third party providers that may result in adverse effects on the confidentiality, integrity, or availability of our information systems or any information residing therein.
 
We engage consultants in connection with our risk assessment processes. These service providers assist us in designing and implementing our cybersecurity policies and procedures, as well as monitoring and testing our safeguards. We require each third-party service provider to certify that it has the ability to implement and maintain appropriate security measures, consistent with all applicable laws, to implement and maintain reasonable security measures in connection with their work with us, and to promptly report any suspected breach of its security measures that may affect our company.
 
As of December 31, 2023 and through the date of the filing of this report, we are not aware of any cybersecurity incidents that have materially affected or are reasonably likely to materially affect us, including our business strategy, results of operations or financial condition. For additional information regarding risks from cybersecurity threats, please refer to Item 1A, “Risk Factors,” in this report.
 
Governance

One of the key functions of our board of directors is informed oversight of our risk management process, including risks from cybersecurity threats. Our board of directors is responsible for monitoring and assessing strategic risk exposure, and our executive officers are responsible for the day-to-day management of the material risks we face. Our board of directors administers its cybersecurity risk oversight function through its audit committee, which provides oversight of our cybersecurity program as part of its periodic review of enterprise risk management.
 
Our Chief Executive Officer and Senior Vice President of Finance are primarily responsible for assessing and managing our material risks from cybersecurity threats. In this regard, our Chief Executive Officer and Senior Vice President of Finance have assistance from consultants.
 
Our Chief Executive Officer and Senior Vice President of Finance oversee our cybersecurity policies and processes, including those described in “Risk Management and Strategy” above. Under such policies and processes, our Chief Executive Officer and Senior Vice President are responsible for reporting to our audit committee regarding any cybersecurity incidents.
 
36

The audit committee, in turn, provides periodic reports to our board of directors regarding our cybersecurity processes, including the results of cybersecurity risk assessments.
 

© 2024 Material-Incidents. All rights reserved.