Risk Factors Dashboard

Once a year, publicly traded companies issue a comprehensive report of their business, called a 10-K. A component mandated in the 10-K is the ‘Risk Factors’ section, where companies disclose any major potential risks that they may face. This dashboard highlights all major changes and additions in new 10K reports, allowing investors to quickly identify new potential risks and opportunities.

View risk factors by ticker

Search filings by term

Risk Factors - FRD

-New additions in green
-Changes in blue
-Hover to see similar sentence in last filing

Item 1A. Risk Factors

Not required.

Item 1B. Unresolved Staff Comments

None.

Item 1C. Cybersecurity

Cybersecurity Governance

The Board of Directors (the “Board”) of the Company is responsible for the oversight of the Company’s cybersecurity program and recognizes the risks that cybersecurity threats may impose on the Company, its business partners, employees and investors. The Company's IT Director is responsible for overall IT governance, risk and compliance including the Company’s cybersecurity program. The Audit Committee of the Board collaborates with the full Board and the IT Director to facilitate alignment of overall IT related controls and processes. The Audit Committee of the Board collaborates with the full Board and the IT Director to facilitate alignment of overall IT related controls and processes. We have a formalized IT Security Incident Report process which provides a method to document and communicate details of security incidents to appropriate stakeholders. The Board and the Audit Committee receive periodic briefings on cybersecurity and help set priorities and strategic direction. The Board and the Audit Committee receive periodic briefings on cybersecurity and help set priorities and strategic direction. As part of continuous improvement, our cybersecurity program is being aligned with the NIST Cybersecurity Framework to help ensure comprehensive controls and oversight. As part of continuous improvement, our cybersecurity program is being aligned with the NIST Cybersecurity Framework 2.0 to help ensure comprehensive controls and oversight.

Cybersecurity Controls

We have implemented a modern, comprehensive set of controls that restrict access to systems using a combination of firewalls, virtual private networks, multi-factor authentication and enforced use of corporate controlled compliant devices. We utilize automated intrusion prevention, detection and response systems which constantly monitor activity, build usage patterns and respond or alert when unusual activity is detected. We have experienced staff who perform root cause analysis, respond to any immediate threat, and implement improved controls for future prevention. Our cybersecurity tools are fully integrated and collect data from various sources to build relationships and detect more complex multi-channel attack strategies. Application controls are role-based and designed to protect data confidentiality and provide overall data integrity. A risk-based approach is taken regarding third-party systems utilized in our business.

We have controls specifically focused on E-mail phishing including impersonation attempts. Although our automated controls prevent most phishing attempts, some can be delivered to employees. To mitigate this risk, we provide training to employees using various methods including E-mail phishing campaigns which send phishing-style E-mails, monitors user responses and automatically assigns further training as appropriate. Employees have been trained to send any suspicious activity to a central IT Service Desk for evaluation and appropriate timely action.

All critical systems have rigorous data backups and are designed for disaster recovery, ensuring business continuity in the event of a catastrophic incident. As part of continuous improvement, disaster recovery testing is being conducted and documented.

We are not aware of any unmitigated risk or any prior incident that may have materially affected the Company’s data integrity, confidentiality, operations, business strategy or financial reporting. Given our reliance on modern systems, we are aware a significant incident could impact the Company’s overall goals so we strive to provide modern counter measures to manage this risk.

4

Recently Filed
Click on a ticker to see risk factors
Ticker * File Date
ONAR 7 hours ago
FRD 7 hours ago
SENEB 8 hours ago
MH 17 hours ago
AEMD 1 day, 7 hours ago
BARK 1 day, 7 hours ago
SJM 2 days, 8 hours ago
ESSI 2 days, 9 hours ago
NTCS 2 days, 10 hours ago
NATH 2 days, 17 hours ago
CETY 6 days, 17 hours ago
WRLD 1 week ago
OESX 1 week ago
LRHC 1 week ago
PYYX 1 week ago
ANVI 1 week, 1 day ago
MLAB 1 week, 2 days ago
PETS 1 week, 2 days ago
UPYY 1 week, 2 days ago
SKFG 1 week, 2 days ago
HIVE 1 week, 2 days ago
IVF 1 week, 2 days ago
BRLS 1 week, 2 days ago
PRPH 1 week, 3 days ago
GLSI 1 week, 3 days ago
FRHC 1 week, 3 days ago
UVV 1 week, 3 days ago
ACQC 1 week, 6 days ago
PKE 1 week, 6 days ago
STEK 1 week, 6 days ago
FNGR 1 week, 6 days ago
FSHP 1 week, 6 days ago
KSEZ 1 week, 6 days ago
RMCF 1 week, 6 days ago
VSAT 1 week, 6 days ago
STE 1 week, 6 days ago
NTRP 1 week, 6 days ago
NRIS 1 week, 6 days ago
KD 1 week, 6 days ago
GLAI 2 weeks ago
SODI 2 weeks ago
RSVR 2 weeks ago
PLUS 2 weeks ago
NGL 2 weeks ago
MDNC 2 weeks ago
SOTK 2 weeks ago
LOGI 3 weeks ago
RAMP 3 weeks ago
MCHP 3 weeks ago
HLNE 3 weeks ago

OTHER DATASETS

House Trading

Dashboard

Corporate Flights

Dashboard

App Ratings

Dashboard