Risk Factors Dashboard

Once a year, publicly traded companies issue a comprehensive report of their business, called a 10-K. A component mandated in the 10-K is the ‘Risk Factors’ section, where companies disclose any major potential risks that they may face. This dashboard highlights all major changes and additions in new 10K reports, allowing investors to quickly identify new potential risks and opportunities.

View risk factors by ticker

Search filings by term

Risk Factors - FRD

-New additions in green
-Changes in blue
-Hover to see similar sentence in last filing

Item 1A. Risk Factors

Not required.

Item 1B. Unresolved Staff Comments

None.

Item 1C. Cybersecurity

Cybersecurity Governance

The Board of Directors (the “Board”) of the Company is responsible for the oversight of the Company’s cybersecurity program and recognizes the risks that cybersecurity threats may impose on the Company, its business partners, employees and investors. The Company's IT Director is responsible for overall IT governance, risk and compliance including the Company’s cybersecurity program. The Audit Committee of the Board collaborates with the full Board and the IT Director to facilitate alignment of overall IT related controls and processes. The Audit Committee of the Board collaborates with the full Board and the IT Director to facilitate alignment of overall IT related controls and processes. We have a formalized IT Security Incident Report process which provides a method to document and communicate details of security incidents to appropriate stakeholders. The Board and the Audit Committee receive periodic briefings on cybersecurity and help set priorities and strategic direction. The Board and the Audit Committee receive periodic briefings on cybersecurity and help set priorities and strategic direction. As part of continuous improvement, our cybersecurity program is being aligned with the NIST Cybersecurity Framework to help ensure comprehensive controls and oversight. As part of continuous improvement, our cybersecurity program is being aligned with the NIST Cybersecurity Framework 2.0 to help ensure comprehensive controls and oversight.

Cybersecurity Controls

We have implemented a modern, comprehensive set of controls that restrict access to systems using a combination of firewalls, virtual private networks, multi-factor authentication and enforced use of corporate controlled compliant devices. We utilize automated intrusion prevention, detection and response systems which constantly monitor activity, build usage patterns and respond or alert when unusual activity is detected. We have experienced staff who perform root cause analysis, respond to any immediate threat, and implement improved controls for future prevention. Our cybersecurity tools are fully integrated and collect data from various sources to build relationships and detect more complex multi-channel attack strategies. Application controls are role-based and designed to protect data confidentiality and provide overall data integrity. A risk-based approach is taken regarding third-party systems utilized in our business.

We have controls specifically focused on E-mail phishing including impersonation attempts. Although our automated controls prevent most phishing attempts, some can be delivered to employees. To mitigate this risk, we provide training to employees using various methods including E-mail phishing campaigns which send phishing-style E-mails, monitors user responses and automatically assigns further training as appropriate. Employees have been trained to send any suspicious activity to a central IT Service Desk for evaluation and appropriate timely action.

All critical systems have rigorous data backups and are designed for disaster recovery, ensuring business continuity in the event of a catastrophic incident. As part of continuous improvement, disaster recovery testing is being conducted and documented.

We are not aware of any unmitigated risk or any prior incident that may have materially affected the Company’s data integrity, confidentiality, operations, business strategy or financial reporting. Given our reliance on modern systems, we are aware a significant incident could impact the Company’s overall goals so we strive to provide modern counter measures to manage this risk.

4

Recently Filed
Click on a ticker to see risk factors
Ticker * File Date
BF-A 10 hours ago
RVSB 11 hours ago
BKYI 12 hours ago
IEHC 14 hours ago
ONAR 1 day, 9 hours ago
FRD 1 day, 10 hours ago
SENEB 1 day, 10 hours ago
MH 1 day, 19 hours ago
AEMD 2 days, 9 hours ago
BARK 2 days, 10 hours ago
SJM 3 days, 10 hours ago
ESSI 3 days, 12 hours ago
NTCS 3 days, 13 hours ago
NATH 3 days, 19 hours ago
CETY 1 week ago
WRLD 1 week, 1 day ago
OESX 1 week, 1 day ago
LRHC 1 week, 1 day ago
PYYX 1 week, 1 day ago
ANVI 1 week, 2 days ago
MLAB 1 week, 3 days ago
PETS 1 week, 3 days ago
UPYY 1 week, 3 days ago
SKFG 1 week, 3 days ago
HIVE 1 week, 3 days ago
IVF 1 week, 3 days ago
BRLS 1 week, 3 days ago
PRPH 1 week, 4 days ago
GLSI 1 week, 4 days ago
FRHC 1 week, 4 days ago
UVV 1 week, 4 days ago
ACQC 2 weeks ago
PKE 2 weeks ago
STEK 2 weeks ago
FNGR 2 weeks ago
FSHP 2 weeks ago
KSEZ 2 weeks ago
RMCF 2 weeks ago
VSAT 2 weeks ago
STE 2 weeks ago
NTRP 2 weeks ago
NRIS 2 weeks ago
KD 2 weeks ago
GLAI 2 weeks, 1 day ago
SODI 2 weeks, 1 day ago
RSVR 2 weeks, 1 day ago
PLUS 2 weeks, 1 day ago
NGL 2 weeks, 1 day ago
MDNC 2 weeks, 1 day ago
SOTK 2 weeks, 1 day ago

OTHER DATASETS

House Trading

Dashboard

Corporate Flights

Dashboard

App Ratings

Dashboard