Innventure, Inc. 10-K Cybersecurity GRC - 2025-04-14

Page last updated on April 14, 2025

Innventure, Inc. reported their cybersecurity risk management and governance process in a yearly 10-K filed on 2025-04-14 08:58:46 EDT.

Filings

10-K filed on 2025-04-14

Innventure, Inc. filed a 10-K at 2025-04-14 08:58:46 EDT
Accession Number: 0001628280-25-017614

Note: filing items unformatted. Drop us a note with the above URL to help us prioritize formatting it!

Item 1C. Cybersecurity.

Item 1C. Cybersecurity. Information about cybersecurity risks and Innventure’s risk management processes is collected, analyzed and considered as part of Innventure’s overall enterprise risk management program. In connection with Innventure’s 42 risk management process, the Audit Committee of the Board (the “Audit Committee”) discusses with management and the independent auditors the Company’s underlying policies and guidelines with respect to risk assessment and risk management, including with respect to cybersecurity. Innventure is in the process of implementing measures to mitigate potential risks associated with information technology disruptions and cybersecurity threats, and Innventure plans to periodically assesses these risks, implements controls, and performs business continuity and disaster recovery planning. Innventure’s current risk management efforts include threat intelligence gathering, vulnerability assessments, and the integration of cybersecurity technologies. These measures are designed to help protect Innventure’s proprietary systems and customer data from both internal and external cybersecurity threats. Innventure engages third parties to perform various cybersecurity services and risk assessments. In order to oversee and identify risks from cybersecurity threats associated with our use of third-party service providers, Innventure performs diligence on third-party service providers that provide critical data. As of the date of this Form 10-K, Innventure has not identified risks as a result of prior cybersecurity incidents that have materially affected, or are reasonably likely to materially affect, Innventure’s operations, business strategy, results of operations, or financial condition. Innventure faces certain ongoing risks from cybersecurity threats and interruptions that, if realized, are reasonably likely to have a material adverse effect on Innventure’s business, financial condition, results of operation, and prospects. See “Risk Factors-Cyber-attacks or a failure in Innventure’s information technology and data security infrastructure could adversely affect Innventure’s business and operations.” Cybersecurity Governance The Audit Committee is responsible for overseeing the Company’s guidelines and policies with respect to risk assessment and risk management to assess and manage the Company’s exposure to enterprise risk. The Audit Committee periodically reviews and discusses with management the Company’s policies with respect to risk assessment and risk management, including but not limited to cybersecurity and enterprise risk, and steps management has taken to monitor and control such exposures. Our Vice President, Finance is responsible for assessing and managing risks from cybersecurity threats. Innventure’s Vice President, Finance has a Bachelor’s degree in Accounting and a Master of Business Administration degree. Our Vice President, Finance is informed about and monitors the prevention, detection, mitigation, and remediation of cybersecurity incidents through reports from an external consultant. The external consultant has 20 years of cybersecurity experience. The external consultant also has an Associate’s degree in Database Administration and Network and System Administration. The external consultant also maintains the industry-recognized CompTIA Security+ certification. The Vice President, Finance reports any exposure to risks from cybersecurity threats to our CFO. The Company intends for the CFO to regularly provide updates on risks related to cybersecurity to the Audit Committee.

Company Information