Page last updated on March 10, 2025
OnKure Therapeutics, Inc. reported their cybersecurity risk management and governance process in a yearly 10-K filed on 2025-03-10 16:05:30 EDT.
Filings
10-K filed on 2025-03-10
OnKure Therapeutics, Inc. filed a 10-K at 2025-03-10 16:05:30 EDT
Accession Number: 0000950170-25-036252
Note: filing items unformatted. Drop us a note with the above URL to help us prioritize formatting it!
Item 1C. Cybersecurity.
Item 1C. Cybersecurity Cybersecurity Risk Management and Strategy We recognize the critical importance of cybersecurity in safeguarding our information systems, data, and operations. Our cybersecurity risk management framework is designed to identify, assess, mitigate, and respond to cybersecurity threats that could impact our business, financial condition, or operational results. Cybersecurity Risk and Threat Landscape As a company that relies on technology and digital assets, we are exposed to various cybersecurity risks, including unauthorized access to, or disruptions of, our systems and networks, and loss of, damage to, or unauthorized access to, or use, disclosure, or other processing of, data, cyberattacks such as ransomware and other malware, phishing and other forms of social engineering, and denial-of-service attacks, insider threats from employees or third-party service providers, supply chain vulnerabilities that may affect our software, hardware, or service providers, and other sources of security breaches and incidents. A security breach or incident, or any other system failure or disruption could result in operational disruptions, financial losses, reputational damage, regulatory penalties, and legal liabilities. Cybersecurity Risk Management and Governance Our cybersecurity risk management approach is integrated into our overall enterprise risk management program. We maintain a cybersecurity governance structure that includes oversight by executive leadership and our Board. Our Board, through the Audit Committee, receives updates on cybersecurity risks, threats, and mitigation strategies on at least a semi-annual basis. Our Chief Financial Officer (CFO) leads our cybersecurity initiatives, working closely with third-party cybersecurity service providers to implement security controls and response plans. We conduct periodic risk assessments and vulnerability analyses to evaluate and strengthen our security posture. Additionally, we maintain a cybersecurity incident response plan that defines procedures designed to identify, contain, mitigate, and recover from cybersecurity incidents. We also evaluate and monitor the security practices of our third-party vendors , partners, and service providers with access to our systems or processing sensitive data on our behalf. Cybersecurity Strategy and Mitigation Measures We implement a comprehensive cybersecurity strategy to address cybersecurity risks. We employ a multi-layered security approach that includes firewalls, intrusion prevention systems, endpoint protection, and network segmentation. We utilize access controls, including multi-factor authentication and role-based access management. To enhance employee awareness and reduce human error risks, we conduct regular cybersecurity training and phishing simulations. We utilize encryption technologies and secure backup systems to protect sensitive data. We adhere to certain frameworks such as the National Institute of Standards and Technology (NIST) Cybersecurity Framework. Furthermore, we leverage advanced threat intelligence and monitoring solutions designed to detect and respond to cyber threats in real time. Cybersecurity Incident Disclosure As of the date of this report, we have not identified any cybersecurity incidents that have materially affected our financial condition or operations. However, in light of the evolving nature of cyber threats, there is no assurance that we will not be subject to future cybersecurity incidents that could have a material impact on our business. Our cybersecurity risk management efforts are subject to ongoing evaluation and adaptation in response to emerging threats and factors such as regulatory developments. For additional information regarding whether any risks from cybersecurity threats, including as a result of any previous cybersecurity incidents, have materially affected or are reasonably likely to materially affect our company, including our business strategy, results of operations, or financial condition, please refer to Item 1A, “Risk Factors,” in this annual report on Form 10-K. 84
Company Information
| Name | OnKure Therapeutics, Inc. |
| CIK | 0001637715 |
| SIC Description | Pharmaceutical Preparations |
| Ticker | OKUR - Nasdaq |
| Website | |
| Category | Emerging growth company |
| Fiscal Year End | December 30 |