Australian Oilseeds Holdings Ltd 10-K Cybersecurity GRC - 2024-12-03

Page last updated on December 3, 2024

Australian Oilseeds Holdings Ltd reported their cybersecurity risk management and governance process in a yearly 10-K filed on 2024-12-03 17:21:15 EST.

Filings

10-K filed on 2024-12-03

Australian Oilseeds Holdings Ltd filed a 10-K at 2024-12-03 17:21:15 EST
Accession Number: 0001493152-24-048520

Note: filing items unformatted. Drop us a note with the above URL to help us prioritize formatting it!

Item 1C. Cybersecurity.

Item 1c. Cybersecurity Australian Oilseeds manages cybersecurity and data protection through a continuously evolving framework, as described in further detail below. The framework allows us to identify, assess and mitigate the risks we face, and assists us in establishing policies and safeguards to protect our systems and the information of those we serve. We employ an array of data security technologies, processes, and methods across our infrastructure to protect systems and sensitive information from unauthorized access. The Audit Committee of the Board of Directors has oversight of our cybersecurity program and is responsible for reviewing and assessing the Company’s cybersecurity and data protection policies, procedures and resource commitment, including key risk areas and mitigation strategies. As part of this process, the Audit Committee receives regular updates from the management team on critical issues related to our information security risks, cybersecurity strategy, supplier risk and business continuity capabilities. The Company’s framework includes an incident management and response program that continuously monitors the Company’s information systems for vulnerabilities, threats and incidents; manages and takes action to contain incidents that occur; remediates vulnerabilities; and communicates the details of threats and incidents to management. Pursuant to the Company’s incident response plan, any incidents are to be reported by the management team to the Audit Committee, appropriate government agencies and other authorities, as deemed necessary or appropriate, considering the actual or potential impact, significance and scope. The Company is not aware of any previous cybersecurity incidents or threats that are reasonably likely to materially affect its business strategy, results of operations, or financial condition. For the fiscal year ended June 30, 2024, we did not identify any cybersecurity incidents that have materially affected or are reasonably likely to materially affect us, including our business strategy, results of operations or financial condition. Our cybersecurity program focuses on all areas of our business, including cloud-based environments, devices used by employees and contractors, facilities, networks, applications, vendors, disaster recovery / business continuity and controls and safeguards enabled through business processes and tools. We continuously monitor for threats and unauthorized access. We also provide various training programs and tools to employees so they can avoid risky practices and help us promptly identify potential or actual issues and have incident response procedures, service tools to log incidents and issues for investigation, and to follow up on matters already reported.

Company Information