Page last updated on November 3, 2025
INFINITE GROUP INC reported their cybersecurity risk management and governance process in a yearly 10-K filed on 2025-10-31 17:34:14 EDT.
Filings
10-K filed on 2025-10-31
INFINITE GROUP INC filed a 10-K at 2025-10-31 17:34:14 EDT
Accession Number: 0001654954-25-012432
Note: filing items unformatted. Drop us a note with the above URL to help us prioritize formatting it!
Item 1C. Cybersecurity.
Item 1C. Cybersecurity We maintain a comprehensive process following standard compliance frameworks (i.e., NIST) for identifying, assessing, and managing material risks from cybersecurity threats as part of our broader risk management system and processes . We closely follow the security industry and global threat trends, and our security professionals oversee cybersecurity risk management and mitigation, incident prevention, detection, and remediation. Our team consists of professionals with deep cybersecurity expertise across multiple industries, including our Director of Infrastructure Management (our ISO) and our Vice President, Cybersecurity Services. Our executive leadership team, along with input from the above professionals, are responsible for our overall enterprise risk management process and regularly consider cybersecurity risks in the context of other material risks to the Company. Should an incident arise or be identified, they reviewed by a cross-functional team to determine whether further escalation is appropriate, with any material incident being escalated to the appropriate members of the technical management teams. As part of our cybersecurity risk management system, we track and log privacy and security incidents across IGI, our vendors, and other third-party service providers to remediate and resolve any such incidents . Significant incidents are reviewed regularly by a cross-functional team to determine whether further escalation is appropriate. Any incident assessed as potentially being or potentially becoming material is immediately escalated for further assessment, and then reported to designated members of our senior management. We consult with outside counsel as appropriate, including on materiality analysis and disclosure matters, and our senior management makes the final materiality determinations and disclosure and other compliance decisions. The Board of Directors has oversight responsibility for risks and incidents relating to cybersecurity threats , including compliance with disclosure requirements, cooperation with law enforcement, and related effects on financial and other risks. Senior management regularly discusses cyber risks and trends and, should they arise, any material incidents with the Board of Directors. Our business strategy, results of operations and financial condition have not been materially affected by risks from cybersecurity threats , but we cannot provide assurance that they will not be materially affected in the future by such risks or any future material incidents. For more information on our cybersecurity related risks, see Item 1A Risk Factors of this Annual Report on Form 10-K.
Company Information
| Name | INFINITE GROUP INC |
| CIK | 0000884650 |
| SIC Description | Services-Prepackaged Software |
| Ticker | |
| Website | |
| Category | Non-accelerated filer Smaller reporting company |
| Fiscal Year End | December 30 |