SEABOARD CORP /DE/ 10-K Cybersecurity GRC - 2026-02-12

Page last updated on February 12, 2026

SEABOARD CORP /DE/ reported their cybersecurity risk management and governance process in a yearly 10-K filed on 2026-02-12 16:11:06 EST.

Filings

10-K filed on 2026-02-12

SEABOARD CORP /DE/ filed a 10-K at 2026-02-12 16:11:06 EST
Accession Number: 0000088121-26-000012

Note: filing items unformatted. Drop us a note with the above URL to help us prioritize formatting it!

Item 1C. Cybersecurity.

Item 1C . Cybersecurity Cybersecurity Risk Management and Strategy Seaboard recognizes the importance of maintaining the trust and confidence of its customers, business partners, employees and other stakeholders with the security of its data and information systems. Management is ultimately responsible for identifying, assessing and managing Seaboard's exposure to cybersecurity risk. Cybersecurity risk management is evaluated at least on an annual basis as a component of Seaboard's broader enterprise risk assessment. Seaboard's information security program maintains a team responsible for managing the cybersecurity risk assessment process across all segments (the "Information Security Team"). Seaboard's Information Security Team further supports management with a quarterly evaluation of changes in risks and vulnerabilities identified in the various segments, distributing internal and external advisory notices, and serving as threat intelligence resources. The Board is involved in the oversight of Seaboard's enterprise risk assessment. Seaboard's information security program includes cybersecurity policies, standards, processes and practices that are based on the recognized framework established by the Center for Internet Security ("CIS") and other applicable industry standards. This framework and these standards serve as guides and references, and Seaboard adapts them to its specific environment, needs and industries. Seaboard seeks to address cybersecurity risks through a comprehensive, company-wide information security program that is focused on preserving the confidentiality, integrity and availability of the information that Seaboard collects and stores, supporting legal and regulatory compliance and preventing disruptions to business operations. Seaboard's information security program monitors the systems and networks Seaboard relies upon for threats, breaches, intrusions and potential other weaknesses; assesses the security of company-wide software, applications and systems; responds to cybersecurity incidents; and facilitates training for employees. Also, Seaboard's information security program addresses risks to the operational technology environment, which is critical for the reliable operation of its plants, power barges and port facilities. Seaboard maintains a risk-based approach to information security. The Information Security Team routinely performs various reviews and generates reports throughout the year to assess risks, threats and compliance with information security policies, standards and the framework of controls. This Information Security Team partners with each of the segments to identify key areas of cybersecurity risk based on the frameworks and develop action plans tailored to address those risks. Other cybersecurity risk management measures Seaboard takes include: ● Employees and directors with access to Seaboard's network are required to participate in trainings on at least a quarterly basis to identify potential cybersecurity risks, which are supplemented by periodic phishing tests. ● Seaboard engages independent third parties to perform some services such as penetration testing and monitoring on an ongoing basis by automated tools that detect threats and trigger alerts for assessment and investigation by Seaboard's Information Security Team. ● Seaboard maintains end user and administrative user policies governing the use of company technology. ● Seaboard conducts risk assessments of certain of its third-party service providers with attention to cybersecurity risks. As of the date of this report, Seaboard is not aware of any cybersecurity threats that have materially affected or are reasonably likely to materially affect Seaboard's business strategy, results of operations or financial condition. However, cybersecurity threats and cyber-attacks continue to increase in sophistication and volume. As a result, Seaboard frequently updates its information security plan to address new threats, and Seaboard continues to make investments to protect its information technology infrastructure. Cybersecurity risks that may materially impact Seaboard are discussed in more detail in Item 1A "Risk Factors," under the heading "Operational Risks," which should be read in conjunction with this Item 1C. Cybersecurity Governance Seaboard acknowledges the importance of effectively managing risks linked to cybersecurity threats. Seaboard's information security program and the Information Security Team is led and managed by a dedicated Senior Director of Information Security (the " IS Senior Director ") . The IS Senior Director, whose experience includes over nine years in information security leadership roles and relevant certifications, brings appropriate expertise to Seaboard's information security program. The IS Senior Director's experience and knowledge are crucial to the ongoing development and execution of Seaboard's information security program. The IS Senior Director and the Information Security Team communicate guidance, including various alerts to monitor and assess threats, to information security personnel in all segments to ensure consistent execution of cybersecurity risk 14 management activities. Updates on segment-level cybersecurity risks, compliance and implementation status are provided on at least a quarterly basis to Seaboard's Chief Executive Officer ("CEO") and Chief Financial Officer ("CFO") for purposes of risk monitoring, updates to policies, allocation of resources, progress on action plans and discussions on other topics as necessary . On at least a quarterly basis, the IS Senior Director and other members of management inform Seaboard's full Board of Directors of new risks or changes to risks, the status of projects supporting Seaboard's information security systems, assessments of Seaboard's information security program and the emerging threat landscape. The Board provides feedback on management's plans and allocates resources for plan improvement expenditures. Seaboard also maintains disclosure controls and procedures to ensure that executive management and the Board receive prompt and timely information regarding any material cybersecurity incidents. Upon confirmation of a cybersecurity incident, the impacted segment invokes their response plan and notifies the IS Senior Director, who then communicates the details of the incident to management's Cybersecurity Committee, consisting of cross-functional leadership representation, for determination of materiality.

Company Information