Page last updated on July 16, 2024
ADC Therapeutics SA reported their cybersecurity risk management and governance process in a yearly 10-K filed on 2024-03-13 12:25:38 EDT.
Filings
10-K filed on 2024-03-13
ADC Therapeutics SA filed a 10-K at 2024-03-13 12:25:38 EDT
Accession Number: 0001628280-24-010843
Note: filing items unformatted. Drop us a note with the above URL to help us prioritize formatting it!
Item 1C. Cybersecurity.
Item 1C. Cybersecurity Cybersecurity risk management is an integral part of our overall enterprise risk management program. Our cybersecurity risk management program is based on industry best practices and provides a framework for handling cybersecurity threats and incidents, including threats and incidents associated with the use of third-party service providers, and facilitates coordination across different departments of our company. This framework includes steps for assessing the severity of a cybersecurity threat, identifying the source of a cybersecurity threat including whether the cybersecurity threat is associated with a third-party service provider, implementing cybersecurity countermeasures and mitigation strategies and informing management and our board of directors of material cybersecurity threats and incidents. Our cybersecurity team also engages third-party security experts for risk assessment and system enhancements. Our cybersecurity team is responsible for assessing our cybersecurity risk management program. In addition, our cybersecurity team provides annual training to all employees. Our board of directors has overall oversight responsibility for our risk management and has delegated cybersecurity risk management oversight to the audit committee. The audit committee is responsible for ensuring that management has processes in place designed to identify and evaluate cybersecurity risks to which the company is exposed and implement processes and programs to manage cybersecurity risks and mitigate cybersecurity incidents. The audit committee also reports material cybersecurity risks to our full board of directors. Management is responsible for identifying, considering and assessing material cybersecurity risks on an ongoing basis, establishing processes to ensure that such potential cybersecurity risk exposures are monitored, putting in place appropriate mitigation measures and maintaining cybersecurity programs. Our cybersecurity programs are under the direction of our Chief Information Officer (“CIO”), who receives reports from our cybersecurity team and monitors the prevention, detection, mitigation, and remediation of cybersecurity incidents. Our CIO has more than 25 years of leading technology specialist teams and leads a team of experienced information systems security professionals and information security managers. Management, together with the CIO, regularly present updates at standing audit committee meetings on the company’s cybersecurity programs, material cybersecurity risks and mitigation strategies and provide periodic cybersecurity reports that cover, among other topics, the company’s cybersecurity programs, developments in cybersecurity and updates to the company’s cybersecurity programs and mitigation strategies. In 2023, we did not identify any cybersecurity threats that have materially affected or are reasonably likely to materially affect our business strategy, results of operations, or financial condition. However, despite our efforts, we cannot eliminate all risks from cybersecurity threats, or provide assurances that we have not experienced an undetected cybersecurity incident. See “Item 1A. Risk Factors.”
Company Information
Name | ADC Therapeutics SA |
CIK | 0001771910 |
SIC Description | Pharmaceutical Preparations |
Ticker | ADCT - NYSE |
Website | |
Category | Accelerated filer |
Fiscal Year End | December 30 |