Page last updated on December 16, 2024
Quanex Building Products CORP reported their cybersecurity risk management and governance process in a yearly 10-K filed on 2024-12-16 06:14:21 EST.
Filings
10-K filed on 2024-12-16
Quanex Building Products CORP filed a 10-K at 2024-12-16 06:14:21 EST
Accession Number: 0001423221-24-000015
Note: filing items unformatted. Drop us a note with the above URL to help us prioritize formatting it!
Item 1C. Cybersecurity.
Item 1C. Cybersecurity. The Company’s information technology systems, as well as those of the Company’s third-party service providers, are subject to cybersecurity threats. Significant cybersecurity threats, including intrusions into, compromises of, or disruptions in the information technology systems of the Company or its third-party service providers could adversely affect the Company’s financial condition and results of operations. The Company maintains and updates its information technology systems to mitigate the risk of cybersecurity threats. The Board of Directors have oversight responsibility for the Company’s cybersecurity risks. While the Company’s employees play a key role in cybersecurity, the Company’s Chief Information Officer, General Counsel and other members of management have shared responsibility for assessing and managing the Company’s cybersecurity risks. The Company’s management has sufficient knowledge, experience and expertise for assessing and managing the Company’s cybersecurity risks. The Board of Directors and Audit Committee receive updates from management regarding cybersecurity risks, cybersecurity threats that could impact the Company and cybersecurity initiatives to enhance the Company’s cybersecurity practices. The Audit Committee also receives updates on the results of assessments and audits of the Company’s information technology systems and controls. The Company has information technology security practices to protect its information technology systems and data and to monitor for potential cybersecurity threats. These practices are integrated into the Company’s risk management framework and include: 15 - cybersecurity controls embedded in the Company’s information technology systems; - implementation of changes to address potential threats and vulnerabilities of the Company’s information technology systems; - incident response programs, including proactive simulations, to identify and manage cybersecurity threats, risks or incidents; - participation in industry forums and collaboration with peers; - security awareness and data protection training for applicable employees; and - engaging third party services and tools to periodically assess and/or monitor cybersecurity threat environment and the company’s cybersecurity posture. Additionally, the Company assesses and manages cybersecurity threats associated with its third-party service providers’ information technology systems that could compromise the Company’s information security or data. Identified cybersecurity threats are communicated to management for review, response, and mitigation as appropriate. The Company assesses cybersecurity risks and changes in the cyber environment and adjusts its practices as deemed appropriate. To date, we have not identified risks from known cybersecurity threats, including as a result of any prior cybersecurity incidents, that have materially affected or are reasonably likely to materially affect us, including our operations, business strategy, results of operations, or financial condition. Refer to “Item 1A. Risk Factors” included elsewhere in this Annual Report on Form 10-K for additional information on risks related to the Company’s business, including cybersecurity risks.
Company Information
| Name | Quanex Building Products CORP |
| CIK | 0001423221 |
| SIC Description | Rolling Drawing & Extruding of Nonferrous Metals |
| Ticker | NX - NYSE |
| Website | |
| Category | Large accelerated filer |
| Fiscal Year End | October 30 |