Sundance Strategies, Inc. 10-K Cybersecurity GRC - 2024-07-01

Page last updated on July 16, 2024

Sundance Strategies, Inc. reported their cybersecurity risk management and governance process in a yearly 10-K filed on 2024-07-01 15:00:38 EDT.

Filings

10-K filed on 2024-07-01

Sundance Strategies, Inc. filed a 10-K at 2024-07-01 15:00:38 EDT
Accession Number: 0001493152-24-025765

Note: filing items unformatted. Drop us a note with the above URL to help us prioritize formatting it!

Item 1C. Cybersecurity.

Item 1C. Cybersecurity Risk Management and Strategy Management is to perform a corporate risk assessment annually, which includes specific consideration and assessment of cybersecurity risk, proportional to the size of the Company. Service providers must meet certain security requirements such as security incident or data breach notification and response protocols, data encryption requirements, and data disposal commitments. In managing cybersecurity risk, we employ a defense-in-depth strategy and regularly monitor our cyber environment for potential new threats. Our strategy includes employee training and awareness on cybersecurity risks and related best practices, required password complexity, the use of multi-factor authentication, information security protocols, anti-virus and anti-ransomware software. Governance Our Board of Directors provides oversight of our cybersecurity program through an annual risk review. On an annual basis, cybersecurity risk and mitigation strategies are reviewed as part of management’s reporting to the Board of Directors, which includes the reporting of significant business risks, including cybersecurity mitigation strategies employed to manage these risks, and a review of any emerging risks. Annually, management is to provide an overview of our cybersecurity program to the Board of Directors, including a review of key strategies, emerging risks, and a summary of key performance indicators.

Company Information