Item 1C. Cybersecurity

 

Risk Management and Strategy

 

As part of our strategy to cease deploying capital into new opportunities in order to focus on supporting our existing ownership interests and maximizing monetization and other strategic opportunities to enable us to return value to our shareholders, we eliminated our internal management of technology and cybersecurity and outsourced this function to a third-party service provider. Our third-party service provider monitors and tests our safeguards, including through the use of automated tools and manual processes, such as vulnerability scanning, penetration tests, and assessments of our technology infrastructure, and offers training to our employees on these safeguards, including through phishing tests and other processes.

 

Governance

 

One of the key functions of our Board of Directors is informed oversight of our risk management process, including risks from cybersecurity threats. Our Board of Directors is responsible for monitoring and assessing strategic risk exposure, and our executive officers are responsible for the day-to-day management of the material risks we face. The Company’s Audit Committee annually reviews with management the Company’s operational risk exposure and the steps management has taken to monitor and control these exposures.