To be successful, we must respond to the rapid changes in technology. If we are unable to do so on a timely basis our business could be materially adversely affected.

Our future success will depend in large part on our ability to enhance our current products and to develop new commercial products on a timely and cost-effective basis in order to respond to technological developments and changing customer needs. The design-in process is typically lengthy and expensive and there can be no assurance that we will be able to continue to meet the product specifications of our customers in a timely and adequate manner. In addition, if we fail to anticipate or to respond adequately to changes in technology and customer preferences, or if there is any significant delay in product developments or introductions, this could have a material adverse effect on our business, financial condition and results of operations, including the risk of inventory obsolescence. Because of the complexity of our products, we have experienced delays from time to time in completing products on a timely basis. If we are unable to design, develop or introduce competitive new products on a timely basis, our future operating results would be adversely affected, particularly in our HPP segment. There can be no assurance that we will be successful in developing new products or enhancing our existing products on a timely or cost-effective basis, or that such new products or product enhancements will achieve market acceptance.

The complexity of our products, particularly in the HPP segment, could result in unforeseen delays or expense or undetected defects or bugs, which could adversely affect the market acceptance of new products, damage our reputation with current or prospective customers, and materially and adversely affect our operating costs.

Highly complex products, such as those we offer, may contain defects and bugs when they are first introduced or as new versions, software documentation or enhancements are released, or their release may be delayed due to unforeseen difficulties during product development. If any of our products or third-party components used in our products contain defects or bugs, or have reliability, quality or compatibility problems, we may not be able to successfully design workarounds. Furthermore, if any of these problems are not discovered until after we have commenced commercial production or deployment of a new product, we may be required to incur additional development costs and product recall, repair or replacement costs. Significant technical challenges also arise with our software products because our customers license and deploy our products across a variety of computer platforms and integrate them with a number of third-party software applications and databases. As a result, if there is system-wide failure or an actual or perceived breach of information integrity, security or availability occurs in one of our end-user customer’s system, it can be difficult to determine which product is at fault and we could ultimately be harmed by the failure of another supplier’s product. Consequently, our reputation may be damaged and customers may be reluctant to buy our products, which could materially and adversely affect our ability to retain existing customers and attract new customers. To resolve these problems, we may have to invest significant capital and other resources and we would likely lose, or experience a delay in, market acceptance of the affected product or products. These problems may also result in claims against us by our customers or others. For example, if a delay in the manufacture and delivery of our products causes the delay of a customer’s end-product delivery, we may be required, under the terms of our agreement with that customer, to compensate the customer for the adverse effects of such delays. As a result, our financial results could be materially adversely affected.

Our international operation is subject to a number of risks.

We market and sell our products in certain international markets and we have established operations in the U.K. Foreign-based revenue is determined based on the location to which the product is shipped or services are rendered and represented 3% and 3% of our total revenue for the fiscal years ended September 30, 2024 and 2023, respectively. If revenues generated by foreign activities are not adequate to offset the expense of establishing and maintaining these foreign activities, our business, financial condition and results of operations could be materially adversely affected. In addition, there are certain risks inherent in transacting business internationally, such as changes in applicable laws and regulatory requirements, export and import restrictions, export controls relating to technology, tariffs and other trade barriers, longer payment cycles, problems in collecting accounts receivable, political instability, fluctuations in currency exchange rates, expatriation controls and potential adverse tax consequences, any of which could adversely impact the success of our international activities. In particular, it is possible activity in the United Kingdom and the rest of Europe will be adversely impacted and that we will face increased regulatory and legal complexities, including those related to tax, trade, and employee relations as a result of Brexit. A portion of our revenues are from sales to foreign entities, including foreign governments, which are primarily paid in the form of foreign currencies. There can be no assurance that one or more of

such factors will not have a material adverse effect on our future international activities and, consequently, on our business, financial condition or results of operations.

We face competition that could adversely affect our sales and profitability.

The markets for our products are highly competitive and are characterized by rapidly changing technology, frequent product performance improvements and evolving industry standards. Many of our competitors are substantially larger than we are and have greater access to capital and human resources and in many cases price their products and services less than ours. In addition, due to the rapidly changing nature of technology, new competitors may emerge. Competitors may be able to offer more attractive pricing or develop products that could offer performance features that are superior to our products, resulting in reduced demand for our products. Such competitors could have a negative impact on our ability to win future business opportunities. There can be no assurance that a new competitor will not attempt to penetrate the various markets for our products and services. Their entry into markets historically targeted by us could have a material adverse effect on our business, financial condition and results of operations.

Pandemics, epidemics or disease outbreaks, such as the novel coronavirus (“COVID-19”), may materially adversely affect our business, results of operations, cash flows and financial condition.

Pandemics, epidemics, or disease outbreaks, such as COVID-19 may cause harm to us, our employees, our clients, our vendors and supply chain partners, and financial institutions, which could have a material adverse effect on our business, results of operations, cash flows, and financial condition. The impact of a pandemic, epidemic, or other disease outbreak, such as COVID-19, may include, but would not be limited to: (i) disruption to operations due to the unavailability of employees due to illness, quarantines, risk of illness, travel restrictions or factors that limit our existing or potential workforce; (ii) volatility in the demand for or availability of our products and services, (iii) inability to meet our customers’ needs due to disruptions in the manufacture, sourcing and distribution of our products and services, or (iv) failure of third parties on which we rely, including our suppliers, clients, and external business partners, to meet their obligations to us, or significant disruptions in their ability to do so.

Government Contracting Risks

During certain fiscal years, we may depend on contracts with the federal government, primarily with the Department of Defense ("DoD"), for a portion of our revenue, and our business could be seriously harmed if the government significantly decreased or ceased doing business with us.

We derived below 1% of our total revenue in fiscal year 2024 and 5% of our total revenue in fiscal year 2023 from the DoD as a subcontractor.We derived 2% of our total revenue in fiscal year 2022 and 4% of our total revenue in fiscal year 2022 from the DoD as a subcontractor. Although we only derived 1% of our total revenue in fiscal year 2024, we expect that the DoD contracts to continue to be important to our business for the foreseeable future. If we were suspended or debarred from contracting with the federal government generally, the General Services Administration, or any significant agency in the intelligence community or the DoD, if our reputation or relationship with government agencies were to be impaired, or if the government otherwise ceased doing business with us or significantly decreased the amount of business it does with us, our business, prospects, financial condition and operating results would be materially and adversely affected.

Our business could be adversely affected by changes in budgetary priorities of the federal government.

Because we derive a significant percentage of our revenue from contracts with the federal government, changes in federal government budgetary priorities could directly affect our financial performance. A significant decline in government expenditures, a shift of expenditures away from programs that we support or a change in federal government contracting policies could cause federal government agencies to reduce their purchases under contracts, to exercise their right to terminate contracts at any time without penalty or not to exercise options to renew contracts. A significant decline in government expenditures, a shift of expenditures away from programs that we support or a change in federal government 11 Table of Contentscontracting policies could cause federal government agencies to reduce their purchases under contracts, to exercise their right to terminate contracts at any time without penalty or not to exercise options to renew contracts.

In years when Congress does not complete its budget process before the end of its fiscal year (September 30), government operations are funded through a continuing resolution ("CR") that temporarily funds federal agencies. Recent CRs have generally provided funding at the levels provided in the previous fiscal year and have not authorized new spending initiatives. When the federal government operates under a CR, delays can occur in the procurement of products

and services. Historically, such delays have not had a material effect on our business; however, should funding of the federal government by CR be prolonged or extended, it could have significant consequences for our business and our industry.

Additionally, our business could be seriously affected if changes in DoD priorities reduces the demand for our services on contracts supporting some operations and maintenance activities or if we experience an increase in set-asides for small businesses, which could result in our inability to compete directly for contracts.

U.S. Federal government contracts contain numerous provisions that are unfavorable to us.

U.S. Federal government contracts contain provisions and are subject to laws and regulations that give the government rights and remedies, some of which are not typically found in commercial contracts, including allowing the government to:

If the government terminates a contract for convenience, we may recover only our incurred or committed costs, settlement expenses and profit on work completed prior to the termination. If the government terminates a contract for default, we may be unable to recover even those amounts, and instead may be liable for excess costs incurred by the government in procuring undelivered items and services from another source. Depending on the value of a contract, such termination could cause our actual results to differ materially and adversely from those anticipated.

As is common with government contractors, we have experienced and continue to experience occasional performance issues under certain of our contracts. Depending upon the value of the matters affected, a performance problem that impacts our performance of a program or contract could cause our actual results to differ materially and adversely from those anticipated.

Intellectual Property and Systems Risks

We may be unsuccessful in protecting our intellectual property rights which could result in the loss of a competitive advantage.

Our ability to compete effectively against other companies in our industry depends, in part, on our ability to protect our current and future proprietary technology under patent, copyright, trademark, trade secret and unfair competition laws. We cannot assure that our means of protecting our proprietary rights in the United States or abroad will be adequate, or that others will not develop technologies similar or superior to our technology or design around our proprietary rights. In addition, we may incur substantial costs in attempting to protect our proprietary rights.

Also, despite the steps taken by us to protect our proprietary rights, it may be possible for unauthorized third parties to copy or reverse-engineer aspects of our products develop similar technology independently or otherwise obtain and use information that we regard as proprietary and we may be unable to successfully identify or prosecute unauthorized uses of our technology.12 Table of ContentsAlso, despite the steps taken by us to protect our proprietary rights, it may be possible for unauthorized third parties to copy or reverse-engineer aspects of our products develop similar technology independently or otherwise obtain and use information that we regard as proprietary and we may be unable to successfully identify or prosecute unauthorized uses of our technology. Furthermore, with respect to our issued patents and patent applications, we cannot assure that patents from any pending patent applications (or from any future patent applications) will be issued, that the scope of any patent protection will include competitors or provide competitive advantages to us, that any of our patents will be held

valid if subsequently challenged or that others will not claim rights in or ownership of the patents (and patent applications) and other proprietary rights held by us.

If we become subject to intellectual property infringement claims, we could incur significant expenses and could be prevented from selling specific products.

We may become subject to claims that we infringe the intellectual property rights of others in the future. We cannot assure that, if made, these claims will not be successful. Any claim of infringement could cause us to incur substantial costs defending against the claim even if the claim is invalid and could distract management from other business. Any judgment against us could require substantial payment in damages and could also include an injunction or other court order that could prevent us from offering certain products.

We need to continue to expend resources on research and development ("R&D") efforts in our HPP segment, to meet the needs of our customers. If we are unable to do so, our products could become less attractive to customers and our business could be materially adversely affected.

Our industry requires a continued investment in R&D. As a result of our need to maintain or increase our spending levels for R&D in this area and the difficulty in reducing costs associated with R&D, our operating results could be materially harmed if our revenues fall below expectations. In addition, as a result of CSPi’s commitment to invest in R&D, spending as a percent of revenues may fluctuate in the future. Further, if we fail to invest sufficiently in R&D or our R&D does not produce competitive results, our products may become less attractive to our customers or potential customers, which could materially harm our business and results of operations.

Our need for continued or increased investment in research and development may increase expenses and reduce our profitability.

Our industry is characterized by the need for continued investment in research and development. If we fail to invest sufficiently in research and development, our products could become less attractive to potential customers and our business and financial condition could be materially and adversely affected. As a result of the need to maintain or increase spending levels in this area and the difficulty in reducing costs associated with research and development, our operating results could be materially harmed if our research and development efforts fail to result in new products or if revenues fall below expectations. In addition, as a result of our commitment to invest in research and development, spending levels of research and development expenses as a percentage of revenues may fluctuate in the future.

Our results of operations are subject to fluctuation from period to period and may not be an accurate indication of future performance.

We have experienced fluctuations in operating results in large part due to the sale of products and services in relatively large dollar amounts to a relatively small number of customers. Customers specify delivery date requirements that coincide with their need for our products and services. Because these customers may use our products and services in connection with a variety of defense programs or other projects with different sizes and durations, a customer’s orders for one quarter generally do not indicate a trend for future orders by that customer. As such, we have not been able in the past to consistently predict when our customers will place orders and request shipments so that we cannot always accurately plan our manufacturing, inventory, and working capital requirements. As a result, if orders and shipments differ from what we predict, we may incur additional expenses and build excess inventory, which may require additional reserves and allowances and reduce our working capital and operational flexibility. Any significant change in our customers’ purchasing patterns could have a material adverse effect on our operating results and reported earnings per share for a particular quarter. Thus, results of operations in any period should not be considered indicative of the results to be expected for any future period.

Our quarterly results may be subject to fluctuations resulting from a number of other factors, including:

In addition, from time to time, we have entered into contracts, referred to as development contracts, to engineer a specific solution based on modifications to standard products. Gross margins from development contract revenues are typically lower than gross margins from standard product revenues. We intend to continue to enter into development contracts and anticipate that the gross margins associated with development contract revenues will continue to be lower than gross margins from standard product sales.

Another factor contributing to fluctuations in our quarterly results is the fixed nature of expenditures on personnel, facilities and marketing programs. Expense levels for these programs are based, in significant part, on expectations of future revenues. If actual quarterly revenues are below management’s expectations, our results of operations will likely be adversely affected. Further, the preparation of financial statements in conformity with accounting principles generally accepted in the United States requires us to make estimates and assumptions that affect the reported amounts of assets and liabilities and disclosure of contingent assets and liabilities at the dates of the financial statements and the reported amounts of revenues and expenses during the reporting periods. Actual results could differ from those estimates, and changes in estimates in subsequent periods could cause our results of operations to fluctuate.

If we experience a disaster or other business continuity problem, we may not be able to recover successfully, which could cause material financial loss, loss of human capital, regulatory actions, reputational harm, or legal liability.14 Table of ContentsIf we experience a disaster or other business continuity problem, we may not be able to recover successfully, which could cause material financial loss, loss of human capital, regulatory actions, reputational harm, or legal liability.

If we experience a local or regional disaster or other business continuity problem, such as a hurricane, earthquake, terrorist attack, pandemic or other natural or man-made disaster, our continued success will depend, in part, on the availability of our personnel, our office facilities, and the proper functioning of our computer, telecommunication and other related systems and operations. As we grow our operations, the potential for particular types of natural or man-made disasters, political, economic or infrastructure instabilities, or other country- or region-specific business continuity risks increases. As we attempt to grow our operations, the potential for particular types of natural or man-made disasters, political, economic or infrastructure instabilities, or other country- or region-specific business continuity risks increases.

If we suffer any data breaches involving the designs, schematics, or source code for our products or other sensitive information, our business and financial results could be adversely affected.

We securely store our designs, schematics, and source code for our products as they are created. A breach, whether physical, electronic or otherwise, of the systems on which this sensitive data is stored could lead to damage or piracy of our products. If we are subject to data security breaches from external sources or from an insider threat, we may have a loss in sales or increased costs arising from the restoration or implementation of additional security measures, either of which could adversely affect our business, financial condition, and results of operations. Other potential costs could include loss of brand value, incident response costs, loss of stock market value, regulatory inquiries, litigation, and management distraction. In addition, a security breach that involved classified information could subject us to civil or criminal penalties, loss of a government contract, loss of access to classified information, or debarment as a government contractor. Similarly, a breach that involved loss of customer-provided data could subject us to loss of a customer, loss of a contract, litigation costs and legal damages, and reputational harm.

Systems failures may disrupt our business and have an adverse effect on our results of operations.

Any systems failures, including network, software or hardware failures, whether caused by us, a third party service provider, unauthorized intruders and hackers, computer viruses, natural disasters, power shortages or terrorist attacks, could cause loss of data or interruptions or delays in our business or that of our clients and reputational harm as a security provider. Like other companies, we have experienced cyber security threats to our data and systems, our company sensitive information, and our information technology infrastructure, including malware and computer virus attacks, unauthorized access, systems failures and temporary disruptions. We may experience similar security threats at customer sites that we operate and manage as a contractual requirement. Prior cyber attacks directed at us have not had a material adverse impact on our business or our financial results, and we believe that our continuing commitment toward threat detection and mitigation processes and procedures will help us minimize or avoid such impact in the future. Due to the evolving nature of these security threats, however, the impact of any future incident cannot be predicted.

In addition, the failure or disruption of our email, communications or utilities could cause us to interrupt or suspend our operations or otherwise harm our business. Our property and business interruption insurance may be inadequate to compensate us for all losses that may occur as a result of any system or operational failure or disruption and, as a result, our actual results could differ materially and adversely from those anticipated.

The systems and networks that we maintain for our clients, although highly redundant in their design, could also fail. If a system or network we maintain were to fail or experience service interruptions, we might experience loss of revenue or face claims for damages or contract termination. Our errors and omissions liability insurance may be inadequate to compensate us for all the damages that we might incur and, as a result, our actual results could differ materially and adversely from those anticipated.

Our business, financial condition and results of operations could be adversely affected by disruptions in the global economy caused by the ongoing conflict between Russia and Ukraine.

The global economy has been negatively impacted by the military conflict between Russia and Ukraine. Furthermore, governments in the United States, United Kingdom and European Union have each imposed export controls on certain products and financial and economic sanctions on certain industry sectors and parties in Russia. Furthermore, governments in the United States, United Kingdom and European Union have each imposed export controls 15 Table of Contentson certain products and financial and economic sanctions on certain industry sectors and parties in Russia. Although we do not have significant customers or suppliers in Russia or Ukraine, we do have customers and suppliers in surrounding regions which may be affected. Further escalation of Russian-Ukraine military conflict and geopolitical tensions related to such military conflict, including increased trade barriers or restrictions on global trade, could result in, among other things, cyber attacks, supply disruptions, lower consumer demand, and changes to foreign exchange rates and financial markets, any of which may adversely affect our business, financial condition and results of operations. The effects of the ongoing conflict could heighten many of our known risks described in these "Risk Factors.”

​

Our business, financial condition and results of operations could be adversely affected by disruptions in the global economy caused by the ongoing conflict between Israel and Hamas.

The global economy has been negatively impacted by the military conflict between Israel and Hamas. There could be an expansion of the countries involved, which could lead to significant detrimental effects to the global economy. Although we do not have significant customers or suppliers in the Middle East region, we do have customers and suppliers in surrounding regions which may be affected. Although we do not have significant customers or suppliers in Russia or Ukraine, we do have customers and suppliers in surrounding regions which may be affected. Further escalation of the Israel and Hamas conflict and geopolitical tensions related to such military conflict, including increased trade barriers or restrictions on global trade, could result in, among other things, cyber attacks, supply disruptions, lower consumer demand, and changes to foreign exchange rates and financial markets, any of which may adversely affect our business, financial condition and results of operations. Further escalation of Russian-Ukraine military conflict and geopolitical tensions related to such military conflict, including increased trade barriers or restrictions on global trade, could result in, among other things, cyber attacks, supply disruptions, lower consumer demand, and changes to foreign exchange rates and financial markets, any of which may adversely affect our business, financial condition and results of operations. The effects of the ongoing conflict could heighten many of our known risks described in these "Risk Factors.”

​

Legal and Regulatory Risks.

Changes in regulations could materially adversely affect us.

Our business, results of operations, or financial condition could be materially adversely affected if laws, regulations, or standards relating to us or our products are newly implemented or changed. In addition, our compliance with existing regulations may have a material adverse impact on us. Under applicable federal securities laws, we are required to evaluate and determine the effectiveness of our internal control structure and procedures. If we have a material weakness in our internal controls, our results of operations or financial condition may be materially adversely affected, or our stock price may decline.

Risks Related to Ownership of Our Common Stock

Failure to remediate and then maintain our internal control over our financial reporting could cause our financial reports to be inaccurate.

We are required to maintain internal control over financial reporting and to assess and report on the effectiveness of those controls. This assessment includes disclosure of any material weaknesses identified by our management in our internal control over financial reporting. Our management concluded that our internal control over financial reporting was ineffective as of September 30, 2024, and identified certain material weaknesses in our internal controls. While management is working to remediate the material weaknesses, there is no assurance that such changes will remediate the identified material weaknesses or that the controls will prevent or detect future material weaknesses. If we are not able to maintain effective internal control over financial reporting, our financial statements, including related disclosures, may be inaccurate, which could have a material adverse effect on our business

Failure to maintain our accounting systems and controls could impair our ability to comply with the financial reporting and internal controls requirements for publicly traded companies.

As a public company, we operate in an increasingly demanding regulatory environment, which requires us to comply with the Sarbanes-Oxley Act of 2002, and the related rules and regulations of the SEC. Company responsibilities required by the Sarbanes-Oxley Act include establishing corporate oversight and adequate internal control over financial reporting and disclosure controls and procedures. Effective internal controls are necessary for us to produce reliable financial reports and are important to help prevent financial fraud.

Because we are a smaller reporting company and a non-accelerated filer, we are not required to comply with the auditor attestation requirements of Section 404 of the Sarbanes-Oxley Act. However, we must perform system and process evaluation and testing of our internal control over financial reporting to allow management to report on the effectiveness of our internal control over financial reporting in this report and future annual reports on Form 10-K, as required by Section 404 of the Sarbanes-Oxley Act. This requires that we incur substantial additional professional fees and internal costs to expand our accounting and finance functions and that we expend significant management efforts.

As of September 30, 2024, we discovered material weaknesses in our system of internal financial and accounting controls and procedures that could result in a material misstatement of our financial statements. Our internal control over financial reporting will not prevent or detect all errors and all fraud. A control system, no matter how well designed and operated, can provide only reasonable, not absolute, assurance that the control system’s objectives will be met. Because

of the inherent limitations in all control systems, no evaluation of controls can provide absolute assurance that misstatements due to error or fraud will not occur or that all control issues and instances of fraud will be detected.

If we are not able to comply with the requirements of Section 404 of the Sarbanes-Oxley Act, or if we are unable to remediate or maintain proper and effective internal controls, we may not be able to produce timely and accurate financial statements. If we cannot provide reliable financial reports or prevent fraud, our business and results of operations could be harmed, and investors could lose confidence in our reported financial information.

Our stock price may continue to be volatile.

Historically, the market for technology stocks has been extremely volatile. Our common stock has experienced and may continue to experience substantial price volatility. The following factors could cause the market price of our common stock to fluctuate significantly:

​

In addition, the stock market in general and the NASDAQ Global Market and technology companies in particular, have experienced extreme price and volume fluctuations that have often been unrelated or disproportionate to the operating performance of such companies. These broad market and industry factors may materially adversely affect the market price of our common stock, regardless of our actual operating performance. In the past, following periods of volatility in the market price of a company’s securities, securities class action litigation has often been instituted against such companies. If any shareholder were to issue a lawsuit, we could incur substantial costs defending the lawsuit and the attention of management could be diverted.

​

Item 1B. Unresolved Staff Comments.

Not applicable.

​

Item 1C. Cybersecurity

Risk Management and Strategy

We have implemented a comprehensive cybersecurity risk management strategy to evaluate, detect, and mitigate significant risks posed by cybersecurity threats. The Information Security Risk component of our overall Risk Management Policy outlines our approach to manage processes, people and technology to address and meet the ever-changing challenges in the global IT security landscape. Our program aims to safeguard our systems, data, and operations against cyber threats, maintain business continuity, ensure compliance with relevant privacy and other regulations, and fulfill our commitments to members, customers, suppliers, employees, and other stakeholders. Like other companies, we have experienced cyber security threats to our data and systems, our company sensitive information, and our information technology infrastructure, including malware and computer virus attacks, unauthorized access, systems failures and temporary disruptions.

Our cybersecurity program is designed to align with and meet the rigorous standards set by industry frameworks such as NIST, SOC 2 Type 2, and other relevant guidelines. By adhering to these frameworks, we ensure that our security measures are robust, comprehensive, and effective in protecting our systems, data, and operations. This commitment not only helps us maintain compliance with regulatory requirements but also demonstrates our dedication to providing a secure environment for our members, customers, suppliers, employees, and other stakeholders.

Risk Assessment; Third Party Assessments and Audits

An information security Risk Assessment (RA) is conducted annually or following any significant changes to the operating or sensitive data environments to identify vulnerabilities and implement appropriate controls and risk mitigation strategies. These assessments can be conducted on any entity within CSPi or any external entity that has signed a Third-Party Agreement with CSPi, covering information systems, applications, servers, networks, and related processes. The IT Manager, along with the responsible department, oversees the execution, development, and implementation of remediation programs. The RA process involves assembling a team, defining the scope, identifying business and IT owners, conducting interviews, reviewing controls and incidents, developing a threat/risk matrix, and preparing an executive summary with recommendations. The Executive Team reviews and approves the recommendations, and a project is initiated to implement the necessary controls and procedures, which are tested quarterly.

​

Incident Response Planning

Our incident response policies and procedures are aligned with applicable laws and state policies. They encompass the identification of roles and responsibilities, investigation, containment and escalation procedures, documentation and preservation of evidence, communication protocols, and lessons learned.

We have established robust incident reporting policies and procedures. These include training employees and contractors to recognize and report incidents promptly upon discovery, as well as preparing and submitting follow-up written reports.

To date, no cybersecurity incident has resulted in any material impact on our business, operations or financial results or our ability to service our customers or run our business.

Governance

A formal process exists through our enterprise risk management matrix developed by the management team of the Company that tracks the Company’s material risks, associated mitigation and remediation strategies and direct accountability which is submitted quarterly to the Audit Committee for review and oversight.

The management team consists our Vice President and General Manager of the High Performance Products segment, which has developed cybersecuritiy software at the Company that multiple Fortune 500 companies are currently using. In addition, he has been the Chief Technical Officer and served in various roles at several cybersecuritiy companies over his 40 year career. He holds a Bachelor of Science in Business and Engineering as well as a Masters of Science in

Finance. Also on the team is the Vice President of Managed services at the Technology Solutions segment, who has over twenty years of technology experience including the monitoring and management of other oganization’s security systems.