ThermoGenesis Holdings, Inc. 10-K Cybersecurity GRC - 2024-04-15

Page last updated on April 16, 2024

ThermoGenesis Holdings, Inc. reported their cybersecurity risk management and governance process in a yearly 10-K filed on 2024-04-15 17:40:58 EDT.


10-K filed on 2024-04-15

ThermoGenesis Holdings, Inc. filed an 10-K at 2024-04-15 17:40:58 EDT
Accession Number: 0001437749-24-012088

Note: filing items unformatted. Drop us a note with the above URL to help us prioritize formatting it!

Item 1C. Cybersecurity.

ITEM 1C. Cybersecurity Cybersecurity risk management is part of the Company’s overall enterprise risk management program. Our cybersecurity risk management program is designed to provide a framework for handling cybersecurity threats and incidents, including threats and incidents associated with the use of services provided by third-party service providers, and facilitate coordination across different departments of our company. This framework includes steps for assessing the severity of a cybersecurity threat, identifying the source of a cybersecurity threat including whether the cybersecurity threat is associated with a third-party service provider, implementing cybersecurity countermeasures and mitigation strategies and informing management and our board of directors of material cybersecurity threats and incidents. We engage with third party service providers to perform penetration tests and to inform us of possible vulnerabilities. In addition, cybersecurity training is provided to all employees on a regular basis but at least annually. Our board of directors has overall oversight responsibility for our risk management, including the cybersecurity risk management program. Management is responsible for identifying, considering and assessing material cybersecurity risks on an ongoing basis, establishing processes to ensure that such potential cybersecurity risk exposures are monitored, putting in place appropriate mitigation measures and maintaining cybersecurity programs. Our cybersecurity programs are under the direction of our Vice President of Operations who monitors the prevention, detection, mitigation, and remediation of cybersecurity incidents. Any significant Cyber incidents are reported to the audit committee and ultimately to the board of directors.

Company Information

NameThermoGenesis Holdings, Inc.
SIC DescriptionLaboratory Apparatus & Furniture
TickerTHMO - Nasdaq
CategoryNon-accelerated filer
Smaller reporting company
Fiscal Year EndDecember 30