Enterprise Risk Management
CenterPoint Energy’s Board of Directors has responsibility for and is actively involved in the oversight of risks that could impact the company.
Our Corporate Governance Guidelines specify that the Board has ultimate oversight responsibility for the company’s system of enterprise risk management. Management is responsible for developing and implementing the company’s enterprise risk management program.
The company’s enterprise risk management function supports executive management’s, operational management’s and functional management’s execution of the company’s strategic business objectives by conducting periodic ongoing assessments, including review of risk mitigation with owners of specific risks.
Throughout the year, the Board participates in reviews with management of the company’s risk management processes, the major risks facing the company and steps taken to mitigate those risks.
BOARD RISK REVIEWS INCLUDE THE FOLLOWING AREAS, AMONG OTHERS:
Operations and system integrity | Cybersecurity and Data Privacy | ||
Safety | Human capital management | ||
Business strategy and policy, including industry and economic developments | Environmental matters, including significant environmental hazards | ||
Litigation and other legal matters | Annual budget, including capital investment plan | ||
Supply Chain | Net Zero and carbon emissions reduction goals and generation transition | ||
Regulatory and legislative developments |
Protecting the Safety, Security and Privacy
of All Employees and Residential and Commercial Customers
- CenterPoint Energy’s company-wide cybersecurity program includes analysis of threat information from external sources, monitoring network activity and employee awareness activities.
- Our Data Privacy governance addresses the collection, storage, usage and destruction of data for a specific business purpose, combined with the public expectation and legal requirements that the data will remain private and protected against unauthorized access or modification.
- Our Physical Security Policy addresses several important topics to help maintain a safe and secure place to work and ensure safe and reliable service to our customers.
Certain risks are disclosed in our annual report on Form 10-K (in particular, see Item 1A regarding Risk Factors), our quarterly reports on Form 10-Q and other reports CenterPoint Energy or its subsidiaries may file from time to time with the Securities and Exchange Commission. Additional information about Enterprise Risk Management oversight is available in our 2024 Proxy Statement.