Page last updated on May 7, 2025
NVE CORP /NEW/ reported their cybersecurity risk management and governance process in a yearly 10-K filed on 2025-05-07 16:12:50 EDT.
Filings
10-K filed on 2025-05-07
NVE CORP /NEW/ filed a 10-K at 2025-05-07 16:12:50 EDT
Accession Number: 0001376474-25-000437
Note: filing items unformatted. Drop us a note with the above URL to help us prioritize formatting it!
Item 1C. Cybersecurity.
Item 1C. Cybersecurity .
ITEM 1C. CYBERSECURITY. We recognize the increasing importance of cybersecurity and its potential impact on our business operations, financial condition, and reputation. We are committed to protecting our information assets and have implemented a comprehensive cybersecurity risk management program to identify, assess, and mitigate cybersecurity risks. We have not experienced any material cybersecurity incidents in the last three years. Board of Directors Oversight of Cybersecurity Our Board of Directors Audit Committee has ultimate oversight of cybersecurity risks. The Committee is composed of independent directors with cybersecurity expertise. Management briefs the Committee on cybersecurity and information security at least annually. Cybersecurity Risk Management We operate under written cybersecurity policies and procedures, and we use a risk-based approach to information security and periodically assess our cybersecurity risks. Our risk management strategy is based on the following principles: · Our business does not require us to collect personal customer information. We minimize other cybersecurity risks by using specialized service providers for sensitive operations such as payroll processing, credit card transactions, email, and remote data backup. We verify our information service providers ’ cybersecurity policies. · Identify and assess cybersecurity risks through a variety of methods, including audits to information security standards, threat testing, and vulnerability scanning. · Prioritize risks based on their potential severity, likelihood, and detectability. · Controls to mitigate risks, including access controls, data protection, data backups, redundant systems, and incident response plans. We keep our controls up-to-date. · Actions to correct any deficiencies and reduce or eliminate vulnerabilities. · Written cybersecurity contingency plans, including plans for various specific scenarios. · Training and testing for all employees on cybersecurity risks, mitigation, and best practices. New employees are required to complete cybersecurity training and testing, and annual training and testing is required for all employees . Cybersecurity Governance Our cybersecurity governance is designed to ensure that risks are managed consistently and effectively. Key elements are: · Written policies and procedures that govern the use of information technology and the handling of sensitive information. · Written incident response plans. · Regular cybersecurity reporting to the Audit Committee. We have a full-time information technology specialist who reports directly to our CEO and is responsible for assessing and managing cybersecurity risks. Both our information technology specialist and our CEO have extensive experience managing our cybersecurity. We have not engaged third-party service providers for cybersecurity, because we believe it is better to have the expertise in-house.
Company Information
| Name | NVE CORP /NEW/ |
| CIK | 0000724910 |
| SIC Description | Semiconductors & Related Devices |
| Ticker | NVEC - Nasdaq |
| Website | |
| Category | Non-accelerated filer Smaller reporting company |
| Fiscal Year End | March 30 |