SOCKET MOBILE, INC. 10-K Cybersecurity GRC - 2024-03-25

Page last updated on July 16, 2024

SOCKET MOBILE, INC. reported their cybersecurity risk management and governance process in a yearly 10-K filed on 2024-03-25 16:56:15 EDT.

Filings

10-K filed on 2024-03-25

SOCKET MOBILE, INC. filed a 10-K at 2024-03-25 16:56:15 EDT
Accession Number: 0000944075-24-000015

Note: filing items unformatted. Drop us a note with the above URL to help us prioritize formatting it!

Item 1C. Cybersecurity.

Item 1C. Cybersecurity We recognize the importance of assessing, identifying and managing material risks associated with cybersecurity threats. These risks include, among other things: operational risks, intellectual property theft, fraud, extortion, harm to employees or customers and violation of data privacy or security laws. Our cybersecurity programs are built on operations and compliance foundations. Operations focus on continuous detection, prevention, measurement, analysis and response to cybersecurity alerts and incidents, and on emerging threats. Compliance establishes oversight of our cybersecurity programs by creating risk-based controls to protect the integrity, confidentiality, accessibility and availability of company data stored, processed or transferred. Our cybersecurity program is integrated within our overall risk management processes. Our cybersecurity program is led by our Chief Technology Officer (“CTO”) who is responsible for our overall information security strategy, policy, security engineering, operations and cyber threat detection and response. Our CTO has extensive information technology and program management experience and many years of experience with our organization. Our CTO reports to our president and CEO. Recognizing the complexity and evolving nature of cybersecurity threats, we engage with external experts in evaluating and testing our risk management systems. The partnerships enable us to leverage specialized knowledge and insights, ensuring our cybersecurity strategies and processes remain at the forefront of industry best practices. Our collaboration with the third-party includes threat assessments and consultation on security enhancements. All employees are required to complete cybersecurity training at least once a year and have access to more frequent cybersecurity training through online updates. Our board of directors oversees management’s processes for identifying and mitigating risks, including cybersecurity risks, to help align our risk exposure with our strategic objectives. Senior leadership briefs the board of directors on our cybersecurity and information security posture, and our board of directors is informed of cybersecurity incidents deemed to have a high or critical business impact, even if immaterial to us. While acknowledging the existence of various cybersecurity risks, to date, they have not materially affected our business strategy, results of operations or financial condition. Although we have not experienced any breaches, we have encountered occasional attempts, albeit of minor significance, targeting our data and systems, including instances of malware and computer virus infiltration. Thus far all such incidents have been minor.


Company Information

NameSOCKET MOBILE, INC.
CIK0000944075
SIC DescriptionElectronic Computers
TickerSCKT - Nasdaq
Website
CategoryNon-accelerated filer
Smaller reporting company
Fiscal Year EndDecember 30