Comparison Overview

Roche

VS

Genentech

Roche

Grenzacherstrasse, None, Switzerland 🇨🇭 , None, CH, 4070
Last Update: 2025-12-09
View Profile
Between 800 and 849
http://www.roche.com/

Roche is a global pioneer in pharmaceuticals and diagnostics focused on advancing science to improve people’s lives. The combined strengths of pharmaceuticals and diagnostics under one roof have made Roche the leader in personalised healthcare – a strategy that aims to fit the right treatment to each patient in the best way possible. Roche is the world’s largest biotech company, with truly differentiated medicines in oncology, immunology, infectious diseases, ophthalmology and diseases of the central nervous system. Roche is also the world leader in in vitro diagnostics and tissue-based cancer diagnostics, and a frontrunner in diabetes management. Founded in 1896, Roche continues to search for better ways to prevent, diagnose and treat diseases and make a sustainable contribution to society. The company also aims to improve patient access to medical innovations by working with all relevant stakeholders. Thirty medicines developed by Roche are included in the World Health Organization Model Lists of Essential Medicines, among them life-saving antibiotics, antimalarials and cancer medicines. Roche has been recognised as the Group Leader in sustainability within the Pharmaceuticals, Biotechnology & Life Sciences Industry ten years in a row by the Dow Jones Sustainability Indices (DJSI). For more information, please visit https://careers.roche.com Read our community guidelines here: https://www.roche.com/some-guidelines.htm #Roche #Biotechnology #Pharmaceuticals #Diagnostics #Healthcare #PersonalisedHealthcare #GreatPlaceToWork #Innovation

NAICS: 541714
NAICS Definition: Research and Development in Biotechnology (except Nanobiotechnology)
Employees: 99,293
Subsidiaries: 51
12-month incidents
0
Known data breaches
0
Attack type number
0
View Profile

Genentech

1 Dna Way, South San Francisco, California, 94080, US
Last Update: 2025-12-09
Between 750 and 799
http://www.gene.com

About Genentech We're passionate about finding solutions for people facing the world's most difficult-to-treat conditions. That is why we use cutting-edge science to create and deliver innovative medicines around the globe. To us, science is personal. Making a difference in the lives of millions starts when you make a change in yours. If you’d like to join our team, view our openings at gene.com/careers. Our patient resource center is dedicated to getting patients and caregivers to the right resources. You can reach them at 1 (877) GENENTECH (436-3683) Monday-Friday, 6am-5pm PST or [email protected]. Community Guidelines: 1. We want to foster positive conversation and diverse community around the issues we are passionate about. To that end, we remove profanity, content that contains credible threats or hate speech, content that is aimed at private individuals, personal information meant to harass someone, and repeated unwanted messages. 2. Don’t mention any medicines by name — ours or anyone else’s. Because of the fair balance rules governing our industry, we cannot post any comments that reference any pharmaceutical brand, product, or service. Please do not mention any specific medicines by name, or include any links to third party sites in your comments. 3. This isn’t the place to report or discuss side effects. This site is not intended as a forum for reporting side effects experienced while taking a Genentech product. Instead, you should report any side effects to Genentech Drug Safety at 1-888-835-2555. You can also report side effects of any prescription product directly to the FDA at 1-800-FDA-1088 or by visiting www.FDA.gov/medwatch. 4. Don’t pitch your product or service. Please don't use our page as a place to promote your product or pitch your services. Please also avoid posting links to external sites. We reserve the right to remove any posts that are deemed promotional.

NAICS: 541714
NAICS Definition: Research and Development in Biotechnology (except Nanobiotechnology)
Employees: 17,817
Subsidiaries: 50
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/roche.jpeg
Roche
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/genentech.jpeg
Genentech
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Roche
100%
Compliance Rate
0/4 Standards Verified
Genentech
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Biotechnology Research Industry Average (This Year)

No incidents recorded for Roche in 2025.

Incidents vs Biotechnology Research Industry Average (This Year)

No incidents recorded for Genentech in 2025.

Incident History — Roche (X = Date, Y = Severity)

Roche cyber incidents detection timeline including parent company and subsidiaries

Incident History — Genentech (X = Date, Y = Severity)

Genentech cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/roche.jpeg
Roche
Incidents

No Incident

https://images.rankiteo.com/companyimages/genentech.jpeg
Genentech
Incidents

No Incident

FAQ

Roche company demonstrates a stronger AI Cybersecurity Score compared to Genentech company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Historically, Genentech company has disclosed a higher number of cyber incidents compared to Roche company.

In the current year, Genentech company and Roche company have not reported any cyber incidents.

Neither Genentech company nor Roche company has reported experiencing a ransomware attack publicly.

Neither Genentech company nor Roche company has reported experiencing a data breach publicly.

Neither Genentech company nor Roche company has reported experiencing targeted cyberattacks publicly.

Neither Roche company nor Genentech company has reported experiencing or disclosing vulnerabilities publicly.

Neither Roche nor Genentech holds any compliance certifications.

Neither company holds any compliance certifications.

Roche company has more subsidiaries worldwide compared to Genentech company.

Roche company employs more people globally than Genentech company, reflecting its scale as a Biotechnology Research.

Neither Roche nor Genentech holds SOC 2 Type 1 certification.

Neither Roche nor Genentech holds SOC 2 Type 2 certification.

Neither Roche nor Genentech holds ISO 27001 certification.

Neither Roche nor Genentech holds PCI DSS certification.

Neither Roche nor Genentech holds HIPAA certification.

Neither Roche nor Genentech holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

NXLog Agent before 6.11 can load a file specified by the OPENSSL_CONF environment variable.

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 8.1
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
References
Description

uriparser through 0.9.9 allows unbounded recursion and stack consumption, as demonstrated by ParseMustBeSegmentNzNc with large input containing many commas.

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 2.9
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
References
Description

A vulnerability was detected in Mayan EDMS up to 4.10.1. The affected element is an unknown function of the file /authentication/. The manipulation results in cross site scripting. The attack may be performed from remote. The exploit is now public and may be used. Upgrading to version 4.10.2 is sufficient to fix this issue. You should upgrade the affected component. The vendor confirms that this is "[f]ixed in version 4.10.2". Furthermore, that "[b]ackports for older versions in process and will be out as soon as their respective CI pipelines complete."

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss2
Base: 5.0
Severity: LOW
AV:N/AC:L/Au:N/C:N/I:P/A:N
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

MJML through 4.18.0 allows mj-include directory traversal to test file existence and (in the type="css" case) read files. NOTE: this issue exists because of an incomplete fix for CVE-2020-12827.

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 4.5
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:L
References
Description

A half-blind Server Side Request Forgery (SSRF) vulnerability exists in kube-controller-manager when using the in-tree Portworx StorageClass. This vulnerability allows authorized users to leak arbitrary information from unprotected endpoints in the control plane’s host network (including link-local or loopback services).

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 5.8
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N
References