Jet.AI Inc. 10-K Cybersecurity GRC - 2024-04-01

Page last updated on April 11, 2024

Jet.AI Inc. reported their cybersecurity risk management and governance process in a yearly 10-K filed on 2024-04-01 16:17:29 EDT.

Filings

10-K filed on 2024-04-01

Jet.AI Inc. filed an 10-K at 2024-04-01 16:17:29 EDT
Accession Number: 0001493152-24-012382

Note: filing items unformatted. Drop us a note with the above URL to help us prioritize formatting it!

Item 1C. Cybersecurity.

Item 1C Cybersecurity We have developed and implemented cybersecurity risk management processes intended to protect the confidentiality, integrity, and availability of our critical systems and information. While everyone at our company plays a part in managing cybersecurity risks, primary cybersecurity oversight responsibility is shared by our Board of Directors and senior management. Our cybersecurity risk management program includes the following strategies for managing cybersecurity risks effectively: Risk Assessment Processes : We conduct regular risk assessments to proactively identify potential cybersecurity threats and vulnerabilities. These assessments involve thorough evaluations of our IT infrastructure, data systems, and processes to pinpoint areas of weakness Proactive Security Measures: In addition to risk assessments, we employ proactive security measures to enhance our cyber defenses. These measures include the continuous monitoring of network activity, the implementation of access controls and encryption protocols, and the deployment of intrusion detection systems to swiftly detect and respond to any suspicious activities. Framework for Identifying and Mitigating Threats: We follow a structured framework for identifying and mitigating cybersecurity threats, which outlines procedures for threat detection, incident response, and risk mitigation. Employee Training and Awareness Programs : We provide training to our management and employees designed to equip employees with the knowledge and skills necessary to identify and respond to cybersecurity risks, tailored based on the persons roles within our organization. Technology: We use external consultants or other third-party experts and service providers, where considered appropriate, to assess, test, or otherwise assist with aspects of our cybersecurity controls. and the use of external consultants or other third-party experts and service providers, where considered appropriate, to assess, test, or otherwise assist with aspects of our cybersecurity controls. Over the past fiscal year, we have not identified risks from known cybersecurity threats that have materially affected or are reasonably likely to materially affect us, including our operations, business strategy, operating results, or financial condition. We will continue to monitor and assess our cybersecurity risk management program as well as invest in and seek to improve such systems and processes as appropriate. If we were to experience a material cybersecurity incident in the future, such incident may have a material adverse effect on our reputation, as well as our operations, business strategy, operating results, and financial condition. Board Governance Our Board of Directors oversees our risk management, including our information technology and cybersecurity policies, procedures, and risk assessments. Our management reports to our Board of Directors on information security matters as necessary, regarding any significant cybersecurity incidents, as well as any incidents with lesser impact potential. One of the key functions of our Board of Directors is informed oversight of our various processes for managing risk. An overall review of risk is inherent in our Board of Directors ongoing consideration of our long-term strategies, transactions and other matters presented to and discussed by the Board of Directors. This includes a discussion of the likelihood and potential magnitude of various risks, including cybersecurity risks, and any actions management has taken to limit, monitor or control those risks. 28

Company Information