TELLURIAN INC. /DE/ - (TELL)

10-K Filing Date: February 23, 2024
ITEM 1C. CYBERSECURITY
We recognize the importance of assessing, identifying and managing material risks associated with any “cybersecurity threat,” as such term is defined in Item 106(a) of Regulation S-K. We assess cybersecurity risk on an annual basis and whenever management deems there to be a significant change to exposure or external threats. We also have several enterprise-wide and business unit-specific cybersecurity processes, technologies, and controls to aid in our efforts to identify, evaluate, and respond to such cybersecurity risk. As part of our cybersecurity risk management processes, we leverage our membership in the Oil and Natural Gas Information Sharing and Analysis Center (ONG-ISAC) and utilize carefully vetted third-party information technology systems vendors to conduct regular network and endpoint monitoring, vulnerability assessments, and penetration testing. We consider cybersecurity risks associated with our use of third-party information technology vendors during the selection process and include ongoing monitoring as part of our cybersecurity processes. In the year ended December 31, 2023, we did not experience a material “cybersecurity incident,” as such term is defined in Item 106(a) of Regulation S-K.

Chaired by Jonathan Gross, who holds the CERT Certificate in Cybersecurity Oversight from the National Association of Corporate Directors (NACD) and Carnegie Mellon University, the Cybersecurity Committee of the Company’s Board of Directors is responsible for assisting the Board of Directors in fulfilling its oversight responsibilities with respect to (i) cybersecurity risks and (ii) policies and practices to monitor and mitigate cybersecurity risks. The Company’s Board of Directors and its Cybersecurity Committee are briefed regularly on Tellurian’s cybersecurity risks and other cybersecurity-related matters. Additionally, we have established the Cybersecurity Management Committee to provide executive oversight of our cybersecurity risk management processes. The Cybersecurity Management Committee is chaired by Michael Dean, our Chief Information Security Officer (CISO), who has over 30 years of cybersecurity management and information technology leadership experience, and includes our Chief Executive Officer, President, General Counsel and Chief Accounting Officer, among other members of our management team. The Cybersecurity Management Committee holds regular meetings at least quarterly and special meetings as necessary to review identified cybersecurity threat risks or incidences and monitor the operation of our incident response plan. As part of our incident response procedures, our CISO is required to report any identified material cybersecurity incident promptly to our Chief Executive Officer, our President and the Cybersecurity Committee.