XML 52 R26.htm IDEA: XBRL DOCUMENT v3.25.0.1
Cybersecurity Risk Management and Strategy Disclosure
 12 Months Ended
Dec. 31, 2024
Cybersecurity Risk Management, Strategy, and Governance [Line Items]  
Cybersecurity Risk Management Processes for Assessing, Identifying, and Managing Threats [Text Block]
Risk Management and Strategy
Our cybersecurity risk management program is a significant part of our overall risk management program. Teams of internal and third-party cybersecurity professionals oversee cybersecurity risk management, which incorporates elements of the National Institute for Standards and Technology Cybersecurity Framework.
We also maintain a comprehensive process for identifying, assessing, and managing material risks from cybersecurity threats. We also have a process in place to oversee and vet our third party resources, including, for critical vendors and as appropriate, through reviews of Service Organization Control Type 2 reports.
We maintain an ongoing end-user cybersecurity awareness program that is designed to raise awareness of cybersecurity threats to reduce our vulnerability as well as to encourage consideration of cybersecurity risks across functions, including quarterly training and simulated phishing campaigns.
Cybersecurity Risk Management Processes Integrated [Flag] true
Cybersecurity Risk Management Processes Integrated [Text Block]
Our cybersecurity risk management program is a significant part of our overall risk management program. Teams of internal and third-party cybersecurity professionals oversee cybersecurity risk management, which incorporates elements of the National Institute for Standards and Technology Cybersecurity Framework.
Cybersecurity Risk Management Third Party Engaged [Flag] true
Cybersecurity Risk Third Party Oversight and Identification Processes [Flag] true
Cybersecurity Risk Materially Affected or Reasonably Likely to Materially Affect Registrant [Flag] false
Cybersecurity Risk Board of Directors Oversight [Text Block]
Members of our senior management, including our Chief Executive Officer, Chief Financial Officer, and leaders from our legal and information technology functions, maintain responsibility for assessing and managing cybersecurity threats. This team has deep expertise in building and leading information systems and cybersecurity teams across a variety of institutions. Our Head of Information Technology has approximately 20 years of information security experience.
Cybersecurity risk governance has been delegated by our Board of Directors to the Audit Committee of the Board of Directors, or the Audit Committee. As provided in the Audit Committee Charter, the Audit Committee is responsible for reviewing, assessing, and considering, in consultation with management and the Board, as appropriate, the overall risk management policies and procedures of the Company, including our major risk exposures such as cybersecurity.
Cybersecurity Risk Board Committee or Subcommittee Responsible for Oversight [Text Block] Cybersecurity risk governance has been delegated by our Board of Directors to the Audit Committee of the Board of Directors, or the Audit Committee. As provided in the Audit Committee Charter, the Audit Committee is responsible for reviewing, assessing, and considering, in consultation with management and the Board, as appropriate, the overall risk management policies and procedures of the Company, including our major risk exposures such as cybersecurity.
Cybersecurity Risk Process for Informing Board Committee or Subcommittee Responsible for Oversight [Text Block]
The Audit Committee and Board of Directors receive routine updates from senior management, including leaders from our information technology and legal functions regarding matters of cybersecurity. These updates include existing and new cybersecurity risks, status on how management is addressing and mitigating those risks, cybersecurity and data privacy incidents, if any, and status on key information security initiatives.
Cybersecurity Risk Role of Management [Text Block] Members of our senior management, including our Chief Executive Officer, Chief Financial Officer, and leaders from our legal and information technology functions, maintain responsibility for assessing and managing cybersecurity threats.
Cybersecurity Risk Management Positions or Committees Responsible [Flag] true
Cybersecurity Risk Management Positions or Committees Responsible [Text Block] Members of our senior management, including our Chief Executive Officer, Chief Financial Officer, and leaders from our legal and information technology functions, maintain responsibility for assessing and managing cybersecurity threats.
Cybersecurity Risk Management Expertise of Management Responsible [Text Block] This team has deep expertise in building and leading information systems and cybersecurity teams across a variety of institutions. Our Head of Information Technology has approximately 20 years of information security experience.
Cybersecurity Risk Process for Informing Management or Committees Responsible [Text Block]
The Audit Committee and Board of Directors receive routine updates from senior management, including leaders from our information technology and legal functions regarding matters of cybersecurity. These updates include existing and new cybersecurity risks, status on how management is addressing and mitigating those risks, cybersecurity and data privacy incidents, if any, and status on key information security initiatives.
Cybersecurity Risk Management Positions or Committees Responsible Report to Board [Flag] true