Page last updated on August 12, 2024
KENNAMETAL INC reported their cybersecurity risk management and governance process in a yearly 10-K filed on 2024-08-12 14:05:52 EDT.
Filings
10-K filed on 2024-08-12
KENNAMETAL INC filed a 10-K at 2024-08-12 14:05:52 EDT
Accession Number: 0000055242-24-000055
Note: filing items unformatted. Drop us a note with the above URL to help us prioritize formatting it!
Item 1C. Cybersecurity.
ITEM 1C - CYBERSECURITY Risk Management and Strategy We assess, identify and manage cybersecurity risks through a structured process. We rely on the National Institute of Standards and Technology (“NIST”) Cybersecurity Framework to guide our approach; covering risk identification, analysis, prioritization and treatment. We continuously monitor and mitigate identified risks, particularly those deemed significant to the Company, including, but not limited to: operational risk (i.e., disruption of business operations); intellectual property theft; fraud; extortion; harm to employees or customers; violation of privacy laws and other litigation and legal risk; and reputational risk, which are tracked through our enterprise risk management program. We closely oversee risks associated with using third-party service providers. This involves evaluating their adherence to our security requirements, conducting technical assessments, monitoring their operational performance and establishing incident reporting protocols when our information is impacted by cyber incidents. Despite our efforts, we acknowledge the potential impact of cyber threats on our operations and business. While the Company has not experienced any significant risks from cyber threats to date, we recognize the potential consequences, including operational disruptions, legal costs, damage to our reputation and financial impacts. We remain vigilant and proactive in managing these risks. We deploy state-of-the-art technologies and services to help us identify and respond to security incidents, manage a 24/7 Security Operations Center and regularly test our preparedness for cyber incidents. These efforts enable us to effectively recognize and respond to low-impact incidents, avoiding their escalation to more problematic situations. Governance The Board of Directors of the Company maintains oversight of cybersecurity risks, ensuring the effectiveness of our risk management processes. The Audit Committee is specifically tasked with monitoring cybersecurity risks, evaluating our approach to cybersecurity, assessing emerging threats and ensuring appropriate measures are in place to mitigate risks. Management, led by the Chief Information Security Officer (the “CISO”), plays a crucial role in assessing and managing cybersecurity risks. The CISO holds a Master of Science in Information Security and Assurance along with other technical certifications, has over 20 years of experience in cybersecurity and has extensive experience managing cybersecurity programs in multinational manufacturing companies. The IT Risk Management Committee, under guidance of the CISO, oversees the assessment and mitigation of identified risk. Regular reporting mechanisms keep the Board of Directors of the Company informed about our cybersecurity posture and emerging risks; enabling informed decision-making regarding cybersecurity strategy and resource allocation.
Company Information
| Name | KENNAMETAL INC |
| CIK | 0000055242 |
| SIC Description | Machine Tools, Metal Cutting Types |
| Ticker | KMT - NYSE |
| Website | |
| Category | Large accelerated filer |
| Fiscal Year End | June 29 |