Page last updated on March 3, 2025
PAR PACIFIC HOLDINGS, INC. reported their cybersecurity risk management and governance process in a yearly 10-K filed on 2025-02-28 15:37:07 EST.
Filings
10-K filed on 2025-02-28
PAR PACIFIC HOLDINGS, INC. filed a 10-K at 2025-02-28 15:37:07 EST
Accession Number: 0000821483-25-000010
Note: filing items unformatted. Drop us a note with the above URL to help us prioritize formatting it!
Item 1C. Cybersecurity.
Item 1C. CYBERSECURITY We maintain a cybersecurity program that is reasonably designed to protect our information, and that of our customers, against cybersecurity threats that could have material adverse effects on the integrity and effectiveness of our information systems. The Audit Committee of our Board of Directors oversees the Company’s enterprise risk management process, including the management of risks arising from cybersecurity threats. The Audit Committee typically reviews the measures implemented by the Company to identify and mitigate these risks on a quarterly basis. As part of such reviews, the Audit Committee receives reports and presentations from the Company’s Chief Information Officer (CIO) that address a wide range of topics, including recent developments, evolving standards, oversight of third-party vendors, and technological trends related to cybersecurity. The full Board of Directors often attends these presentations. Additionally, at least once each year the CIO briefs the Audit Committee on the results of an independent third-party assessment of the Company’s cybersecurity and the Company’s Information Technology (“IT”) incident response and recovery plan. At the management level, our cybersecurity strategy is managed by the CIO. The CIO’s extensive experience in technology and risk management, including prior work experience in cybersecurity, complemented by other members of our IT department and third-party vendors, form the backbone of our cybersecurity capability. Our cybersecurity program is based on 26 recognized best practices and standards for cybersecurity and IT, including the National Institute of Standards and Technology Cybersecurity Framework. Cybersecurity incidents that meet established reporting thresholds are escalated within the Company to the CIO and the Company’s executive leadership team and, where appropriate, reported to Audit Committee and Board of Directors. Cybersecurity threats and related incidents have not had a material impact on the company to date, but future cybersecurity incidents could have a material effect on our business, financial condition, and results of operations. Moreover, cybersecurity insurance may not be available on commercially reasonable terms. While we have not experienced any material cybersecurity incidents, there can be no guarantee that we will not be the subject of future successful attacks. Additional information on cybersecurity risks we face can be found in Part I, Item 1A. - Risk Factors.
Company Information
| Name | PAR PACIFIC HOLDINGS, INC. |
| CIK | 0000821483 |
| SIC Description | Crude Petroleum & Natural Gas |
| Ticker | PARR - NYSE |
| Website | |
| Category | Large accelerated filer |
| Fiscal Year End | December 30 |