Page last updated on March 27, 2025
Wilhelmina International, Inc. reported their cybersecurity risk management and governance process in a yearly 10-K filed on 2025-03-27 16:02:18 EDT.
Filings
10-K filed on 2025-03-27
Wilhelmina International, Inc. filed a 10-K at 2025-03-27 16:02:18 EDT
Accession Number: 0001683168-25-001932
Note: filing items unformatted. Drop us a note with the above URL to help us prioritize formatting it!
Item 1C. Cybersecurity.
ITEM 1C. CYBERSECURITY RISK MANAGEMENT AND STRATEGY Our cybersecurity risk management program is designed to identify, assess, and manage the cybersecurity risks that are relevant to our business and is integrated into our overall enterprise risk management program. Our cybersecurity risk management program includes: · managing (i) our cybersecurity risk assessment processes, (ii) our security controls, and (iii) our response to cybersecurity incidents; · receiving and reviewing ongoing assessments to help identify material cybersecurity risks to our critical systems, information, products, services, and our broader enterprise information technology environment from the Company’s outside information technology and information processing vendors (our “IT Providers”) as well as recommendations from those IT Providers; · carrying cyber risk insurance that provides protection (as specified in the applicable policies) against certain potential costs and losses arising from a cybersecurity incident; and · requiring employees, as well as contractors who have access to our systems or the data of our employees or customers, to treat information as confidential. We have not identified risks from known cybersecurity threats, including as a result of any prior cybersecurity incidents, that have materially affected or are reasonably likely to materially affect us, including our operations, business strategy, results of operations, or financial condition. 5 Other than our IT Providers who provide general information technology services, assessments, and recommendations including management of cybersecurity processes and associated risk, the Company utilizes Crowd Strike, a well-known cybersecurity service to help mitigate our cybersecurity needs. GOVERNANCE Cybersecurity is an important part of our risk management processes and an area of increasing focus for the Company’s Board of Directors and management, with the Audit Committee responsible for the oversight of risks from cybersecurity threats. The Audit Committee periodically receives updates from our Chief Operating Officer , regarding our cybersecurity threat risk management and mitigation strategies covering topics such as data security posture and potentially material cybersecurity threat risks or incidents, as well as the steps management has taken to respond to such risks. Our Chief Operating Officer is a trained Certified Fraud Examiner. Specifically, our IT Providers communicate directly with our Chief Operating Officer on a real-time basis regarding current and emerging material cybersecurity threat risks that are identified during the provision of their various services. Additionally, certain of the Company’s IT Providers provide applications and services, such as Crowd Strike, to assist in our cybersecurity measures, with reports and incident notifications, if any, directed to the attention of our COO , as well. In this way, management remains informed about and can monitor the prevention, mitigation, detection, and remediation of cybersecurity incidents and can raise a material issue immediately to the Audit Committee with more routine security matters reserved for presentation at their regular meetings.
Company Information
| Name | Wilhelmina International, Inc. |
| CIK | 0001013706 |
| SIC Description | Services-Management Consulting Services |
| Ticker | WHLM - OTC |
| Website | |
| Category | Non-accelerated filer Smaller reporting company |
| Fiscal Year End | December 30 |