TG THERAPEUTICS, INC. 10-K Cybersecurity GRC - 2024-02-29

Page last updated on July 16, 2024

TG THERAPEUTICS, INC. reported their cybersecurity risk management and governance process in a yearly 10-K filed on 2024-02-29 17:23:27 EST.


10-K filed on 2024-02-29

TG THERAPEUTICS, INC. filed a 10-K at 2024-02-29 17:23:27 EST
Accession Number: 0001437749-24-006144

Note: filing items unformatted. Drop us a note with the above URL to help us prioritize formatting it!

Item 1C. Cybersecurity.

ITEM 1C. CYBERSECURITY Risk Management and Strategy We have implemented and maintain various information security processes designed to mitigate risks on a case-by-case basis from cybersecurity threats to our critical computer networks, third party-hosted services, communications systems, hardware and software, and our critical data, including intellectual property, confidential information that is proprietary, strategic or competitive in nature, and data related to patients and clinical trials (IT Assets). The potential consequences of a material cybersecurity incident could include reputational damage, litigation with third parties, regulatory criticism or proceedings and increased cybersecurity protection and remediation costs, which in turn could materially adversely affect our results of operations. The Company’s information security program evaluates threats posed by internal and external factors and supports daily operational functions that prevent unauthorized access or compromise. Depending on the environment, we implement and maintain various technical, physical, and organizational measures, processes, standards and policies designed to manage and mitigate material risks from cybersecurity threats to our IT Assets, including, for example: implementing policies and guidelines governing the individual use and protection of IT Assets by employees, employee training, and leveraging the capability of third-party service providers to support our internal cybersecurity processes. We will continue to monitor proposed cybersecurity disclosure rules from the SEC and alter our procedures accordingly. Risks from cybersecurity threats have, to date, not materially affected us, our business strategy, results of operations or financial condition. For a description of the risks from cybersecurity threats that may materially affect us and how they may do so, see our risk factors under Part 1. Item 1A. Risk Factors in this Annual Report on Form 10-K, including the risk factor captioned “Our internal information technology systems, or those of our third-party CROs, CMOs, or other contractors or consultants, may fail or suffer security breaches, which could result in a material disruption of our drug candidates’ development programs and our commercialization of any products for which we receive regulatory approval.” Governance Our information technology (IT) team leads the Company’s overall cybersecurity efforts and is responsible for the day-to-day management of risks we face, while our Board of Directors/management provides guidance on the oversight of risk management. Our Information Security Incident Response Plan is designed to escalate cybersecurity incidents, depending on the circumstances, to appropriate stakeholders as defined by internal Standard Operating Procedures. As part of such process, the corporate IT Security Team receives aggregate monthly reports from a third-party managed services organization contracted to monitor the TGTX IT environment. Additionally, the Vice President of IT receives regular reports from the corporate IT Security Team concerning the Company’s significant cybersecurity threats and risks and the processes the Company has implemented to address them. Significant events are reported to the Chief Financial Officer.

Company Information

SIC DescriptionPharmaceutical Preparations
TickerTGTX - Nasdaq
CategoryLarge accelerated filer
Fiscal Year EndDecember 30