LINCOLN ELECTRIC HOLDINGS INC 10-K Cybersecurity GRC - 2025-02-26

Page last updated on July 27, 2025

LINCOLN ELECTRIC HOLDINGS INC reported their cybersecurity risk management and governance process in a yearly 10-K filed on 2025-02-26 15:26:18 EST.

Filings

10-K filed on 2025-02-26

LINCOLN ELECTRIC HOLDINGS INC filed a 10-K at 2025-02-26 15:26:18 EST
Accession Number: 0000059527-25-000006

Note: filing items unformatted. Drop us a note with the above URL to help us prioritize formatting it!

Item 1C. Cybersecurity.

ITEM 1C. CYBERSECURITY Risk Management and Strategy Our cybersecurity risk management process is integrated into our ERM process as described in Item 1A. Risk Factors. Cybersecurity has been identified as a critical risk. To identify, assess, and manage material cybersecurity risks, we regularly evaluate and take steps to enhance our cybersecurity protocols to protect against or mitigate cyber threats. We conduct third-party and internal assessments of our environments, including system penetration testing, test our recovery and response processes, and we consider industry standards when developing our information security program. The Company has an information security training program, which calls for training all computer-based employees through various employee training modules relative to information security matters and phishing simulation events with employees to raise cybersecurity awareness. From time to time, we engage third-party assessors, consultants, auditors and others to assist us with evaluating, enhancing, implementing and monitoring our cybersecurity risk-management programs. We maintain processes to oversee and identify cybersecurity risks associated with our use of third-party service providers such as contract and vendor due diligence review, as well as annual review of the service providers’ independent audit report where applicable. Like many companies, our systems and those of our third party providers who provide us with services and products may be subject to cybersecurity threats and cybersecurity incidents. To date, no such cybersecurity incidents have had or are reasonably likely to have a material impact on our Company, including its business strategy, results of operations or financial condition. However, if as a result of any future incidents our systems are significantly damaged, cease to function properly or are subject to a significant cybersecurity incident, we may suffer an interruption in our ability to manage and operate the business, and our results of operations and financial condition could be adversely affected. The Company maintains an insurance policy with respect to cybersecurity and has undergone several simulation, preparedness and response exercises. See “Risks Related to Manufacturing and Operations” in Item 1A. Risk Factors. Governance Our Board oversees the management of our risks, including risks from cybersecurity threats, on an enterprise-wide basis, and the Lead Independent Director promotes our Board’s engagement in this process. Our Board has delegated oversight of the risk assessment and mitigation process with respect to cybersecurity to the Audit Committee of our Board . The Audit Committee regularly monitors the Company’s cybersecurity risks and receives updates from the Chief Information Officer (“CIO”) at each meeting. In addition, the Audit Committee regularly reviews the overall effectiveness of the information technology security environment as part of quarterly updates provided by the CIO. The CIO reports to the full Board about cybersecurity on an annual basis. Our CIO has over 25 years of experience in the Information Technology (“IT”) and cybersecurity industry. The CIO is responsible for assessing and managing material risks from cybersecurity threats, including monitoring the prevention, detection, mitigation and remediation of cybersecurity incidents. On at least a quarterly basis, the CIO chairs the IT Governance Committee, which includes the executive management team. The purpose of this committee is to inform and make strategic decisions on IT-related matters, including the prevention, detection, mitigation and remediation of cybersecurity incidents. In addition, the CIO regularly reviews key cybersecurity risk metrics and reporting designed to measure the effectiveness of related processes and procedures as part of quarterly updates to the Audit Committee. The CIO utilizes this information in her reporting to the Board and Audit Committee of the Board. ITEM 1D. INFORMATION ABOUT OUR EXECUTIVE OFFICERS EXECUTIVE OFFICERS OF THE REGISTRANT Name Age Position Steven B. Hedlund 58 Chair of the Board since January 1, 2025; President and Chief Executive Officer since January 1, 2024; Executive Vice President, Chief Operating Officer from May 9, 2022 to December 31, 2023; Executive Vice President and President, Americas and International Welding from October 21, 2020 to May 9, 2022; Executive Vice President and President, International Welding from June 1, 2017 to October 21, 2020; Senior Vice President and President, Global Automation from January 22, 2015 to June 1, 2017; Senior Vice President, Strategy & Business Development from February 19, 2014 to January 22, 2015; Vice President, Strategy and Business Development from September 15, 2008 to February 19, 2014. Gabriel Bruno 57 Executive Vice President, Chief Financial Officer and Treasurer since April 22, 2020; Executive Vice President, Finance from January 1, 2019 to April 22, 2020; Executive Vice President, Chief Human Resources Officer from July 1, 2016 to January 1, 2019; Executive Vice President, Chief Human Resources Officer and Chief Information Officer from February 18, 2016 to July 1, 2016; Executive Vice President, Chief Information Officer and Interim Chief Human Resources Officer from March 7, 2015 to February 18, 2016; Executive Vice President, Chief Information Officer from February 19, 2014 to March 7, 2015; Vice President, Chief Information Officer from May 1, 2012 to February 19, 2014; Vice President, Corporate Controller from 2005 to May 1, 2012. Jennifer I. Ansberry 51 Executive Vice President, General Counsel and Secretary since April 20, 2017; Vice President, Deputy General Counsel from August 1, 2014 to April 20, 2017; Deputy General Counsel from 2004 to August 1, 2014. Lisa A. Dietrich 52 Executive Vice President, Chief Digital Information Officer since February 19, 2025; Executive Vice President, Chief Information Officer from May 9, 2022 to February 19, 2025. Senior Vice President and Chief Information Officer, American Greetings Corporation (a global leader in the large and enduring Celebrations marketplace) from March 2018 until April 2022; Vice President of Business Transformation and Executive Director, American Greetings Corporation from January 2011 to March 2018. Susan C. Edwards 62 Executive Vice President, Chief Human Resources Officer, since February 19, 2025; Senior Vice President, Chief Human Resources Officer, from April 8, 2024 to February 19, 2025. Global Vice President and Chief Human Resources Officer, Sealed Air Corporation (a global manufacturer of packaging solutions) from 2017 until 2022. Gregory Doria 48 Senior Vice President, President, Harris Products Group and Asia Pacific Welding since January 1, 2024; Senior Vice President, President, Harris Products Group from October 1, 2021 to December 31, 2023; Senior Vice President, Chief Operating Officer, Harris Products Group from April 21, 2021 to September 30, 2021; Vice President, Marketing from July 1, 2019 to April 20, 2021; Director, Global Industry Segments from March 1, 2017 to June 30, 2019; Regional Sales Manager, West Region from October 6, 2014 to February 28, 2017. Michael J. Whitehead 51 Senior Vice President, President, Americas Welding, since February 5, 2025; Senior Vice President, President, Global Automation, Cutting and Additive Businesses from January 1, 2019 to February 5, 2025; Senior Vice President, Strategy and Business Development from August 1, 2016 to January 1, 2019; President, Lincoln Canada from January 1, 2015 to August 1, 2016; Director, New Product Development, Consumables R&D from January 1, 2012 to January 1, 2015. The Company has been advised that there is no arrangement or understanding among any one of the officers listed and any other persons pursuant to which he or she was elected as an officer. The executive officers are elected by the Board normally for a term of one year and/or until the election of their successors.

Company Information