Novo Integrated Sciences, Inc. 10-K Cybersecurity GRC - 2024-12-18

Page last updated on December 18, 2024

Novo Integrated Sciences, Inc. reported their cybersecurity risk management and governance process in a yearly 10-K filed on 2024-12-18 16:28:39 EST.

Filings

10-K filed on 2024-12-18

Novo Integrated Sciences, Inc. filed a 10-K at 2024-12-18 16:28:39 EST
Accession Number: 0001493152-24-050606

Note: filing items unformatted. Drop us a note with the above URL to help us prioritize formatting it!

Item 1C. Cybersecurity.

ITEM 1C. CYBERSECURITY We recognize the critical importance of developing, implementing, and maintaining robust cybersecurity measures to safeguard our information systems and protect the confidentiality, integrity, and availability of our data. We have strategically integrated cybersecurity risk management into our broader risk management framework to promote a company-wide culture of cybersecurity risk management. This integration ensures that cybersecurity considerations are an integral part of our decision-making processes at every level. Our risk management team works closely with our IT team to continuously evaluate and address cybersecurity risks in alignment with our business objectives and operational needs. We have not encountered cybersecurity challenges that have materially impaired our operations or financial standing. The Company is acutely aware of the critical nature of managing risks associated with cybersecurity threats. The Company has established robust oversight mechanisms to ensure effective governance in managing risks associated with cybersecurity threats because we recognize the significance of these threats to our operational integrity and stakeholder confidence, Primary responsibility for assessing, monitoring and managing our cybersecurity risks rests with our Chief Executive Officer. Working in close coordination with the Board of Directors, the CEO oversees our governance programs, including testing our compliance standards, remediating known risks, and has ongoing direct interaction with our IT department and periodic interaction with external cybersecurity experts, as needed. The Chief Executive Officer is continually informed about the latest developments in cybersecurity, including potential threats and innovative risk management techniques. This ongoing knowledge is crucial for the effective prevention, detection, mitigation, and remediation of cybersecurity incidents. The Chief Executive Officer, with the assistance from of both our IT department and external consultants, as needed, implements and oversees processes for the regular monitoring of our information systems. This includes the deployment of advanced security measures and regular system checks to identify potential vulnerabilities. In the event of a cybersecurity incident, the Chief Executive Officer is well prepared to initiate immediate actions to mitigate the impact and initiate long-term strategies for remediation and prevention of future incidents. The Chief Executive Officer regularly communicates with senior management and the Board of Directors on cybersecurity risks and incidents. This ensures that the highest levels of management are kept abreast of the cybersecurity posture and potential risks facing the Company. Furthermore, significant cybersecurity matters, and strategic risk management decisions are escalated to the Board of Directors, ensuring that they are engaged in comprehensive oversight and can provide guidance on critical cybersecurity issues on a broad range of topics, including: ● Current cybersecurity landscape and emerging threats; ● Status of ongoing cybersecurity initiatives and strategies; ● Incident reports and learnings from any cybersecurity events; and ● Compliance with regulatory requirements and industry standards. 79

Company Information