ITEM 1C.

CYBERSECURITY

 

Risk oversight and management is a key role for the Board and its committees. The Board is responsible for identifying and understanding the Company’s principal risks and ensuring that appropriate systems are implemented to monitor, manage and mitigate those risks. The committees of the Board have oversight over risks within their respective mandates.

 

Oversight of cybersecurity is integrated into the responsibilities of the Board. The Nominating and Governance Committee (the “NGC”) has been assigned oversight of cybersecurity matters, particularly as they relate to financial risk and controls, integrity of financial data and public disclosures, and security of overall digital data.

 

Management is responsible for the implementation of risk management strategies and for the operational oversight of company-wide cybersecurity strategy, policy, and standards to assess and prepare us to address cybersecurity risks. We have evolving processes for assessing, identifying and managing cybersecurity risks, which are built into our information technology function and are designed to help protect our information assets and operations from cyber threats, protect employee and corporate information from unauthorized access or attack, as well as secure our networks and systems. Such processes include physical, procedural and technical safeguards, response plans, and routine review of our policies and procedures to identify risks and refine our practices. We engage independent third parties to assess and implement our cybersecurity procedures and enhance our oversight.

 

The NGC receives periodic updates from management regarding cybersecurity matters and is notified between such updates regarding any significant new cybersecurity threats or incidents. We are not aware of any cybersecurity incidents that could have a material impact on our business strategy, results of operations, or financial condition.

 

Back SEC Filing Thank you for subscribing