2024
INITIATIVES
Cybersecurity awareness and culture
—Built a strong, employee-driven cybersecurity culture centered on shared responsibility
—Delivered company-wide mandatory cybersecurity training for all team members
—Provided additional mandatory training for identif ied high-risk roles
—Conducted targeted phishing simulations and awareness campaigns
—Equipped executive-level (C-suite) leaders with cybersecurity training tailored to
advanced threat scenarios
Cybersecurity is a foundational pillar of Englobe’s technology strategy, rooted in our commitment to trust,
resilience, and responsible innovation. In an increasingly complex digital landscape, we view cybersecurity
not only as a technical requirement, but as a core business imperative – one that protects our clients, team
members, partners, and communities.
Our approach combines robust governance, continuous education, and cutting-edge technology to stay
ahead of evolving threats. We are proud that our ef forts have been recognized with a high cybersecurity
readiness rating aligned with the United Nations’ global benchmarks, af f irming our alignment with international
standards. From AI policy leadership to real-time threat detection, we are building a future-ready security
posture that supports sustainable growth and long-term value.
Cybersecurity
and responsible AI
ONGOING
INITIATIVES
Policy, governance and AI readiness
—Refreshing all policies and procedures annually to adapt to the evolving
cybersecurity landscape
—Adopting AI governance policies early, aligned with data protection and ethical
use standards
—Aligning with the NIST Cybersecurity Framework and CIS benchmarks to uphold
rigorous security standards
—Completing annual third-party cybersecurity assessments to ensure risk assurance
and industry-leading compliance
—Conducting ongoing internal security audits focused on continuous improvement
and automation
Security infrastructure and technology
—Encrypting all data using industry-leading standards
—Utilizing advanced encryption tools and real-time threat detection systems
—Establishing robust partnerships with Security as a Service (SECaaS) providers for
continuous monitoring and rapid response
—Integrating AI-powered threat detection and prevention across systems
—Developing advanced cybersecurity architecture designed to scale with emerging threats
—Implementing a comprehensive vulnerability and patch management program to
detect and remediate risks
Introduction Environment Social Governance Appendix
45
ACTING WITH TRANSPARENCY AND INTEGRITY
Gatineau, Québec
