Page last updated on January 13, 2025
CEL SCI CORP reported their cybersecurity risk management and governance process in a yearly 10-K filed on 2025-01-13 16:16:33 EST.
Filings
10-K filed on 2025-01-13
CEL SCI CORP filed a 10-K at 2025-01-13 16:16:33 EST
Accession Number: 0001654954-25-000288
Note: filing items unformatted. Drop us a note with the above URL to help us prioritize formatting it!
Item 1C. Cybersecurity.
ITEM 1C. CYBERSECURITY CEL-SCI recognizes the importance of assessing, identifying, and managing material risks from cybersecurity threats. CEL-SCI’s policies, standards and procedures for assessing, identifying, and managing material risks from cybersecurity threats are integrated into our overall risk management system. In this regard, CEL-SCI uses various tools and processes to help prevent, identify, and resolve any identified vulnerabilities and security incidents in a timely manner. These include, but are not limited to, internal reporting, routine employee awareness updates, annual cyber security training, monthly email testing engaging experts and third-party monitoring and detection tools. CEL-SCI employs third-party information technology (“IT’) consultants to manage its information technology environment and help manage and assess cybersecurity risks. The third-party IT consultants have relevant industry experience, including security solutions and data protection and recovery. Using various monitoring and detection tools implemented into CEL-SCI’s internal technology systems, they can identify cybersecurity threats and report such risks to CEL-SCI’s management team. CEL-SCI’s management team oversees efforts to prevent, detect, mitigate, and remediate cybersecurity risks and incidents through various means, which includes oversight over its third-party IT consultant, monitoring systems and employee engagement. The management team is responsible for reporting any cybersecurity risks identified by CEL-SCI’s third-party IT consultant to its board of directors. CEL-SCI’s board of directors is responsible for oversight over its risk management system, including review and approval of the risk management system and processes implemented by management to identify, assess, manage and mitigate cybersecurity risks. The Board is responsible for monitoring and assessing material risk exposure to cybersecurity risks, and CEL-SCI’s management is responsible for the day-to-day supervision of the material risks CEL-SCI may face. CEL-SCI’s risks from cybersecurity threats have not affected or are reasonably not likely to materially affect its business strategy, results of operations, or financial condition.
Company Information
| Name | CEL SCI CORP |
| CIK | 0000725363 |
| SIC Description | Biological Products, (No Diagnostic Substances) |
| Ticker | CVM - NYSE |
| Website | |
| Category | Non-accelerated filer Smaller reporting company |
| Fiscal Year End | September 29 |