Introduction Environment Social Governance Appendix

42

ACTING WITH TRANSPARENCY AND INTEGRITY

2025

INITIATIVES

Cybersecurity culture

and awareness

— An annual , month - long cybersecurity

education campaign that includes

mandatory awareness training for all team

members

— Targeted training programs for high - risk

roles and privileged users

— Regular phishing simulations to raise team

member awareness

— Executive - level cybersecurity brief ings

tailored to emerging threat scenarios

— Ongoing communication campaigns

promoting secure digital practices

Governance , risk management ,

and responsible AI

— Annual review and updates of

cybersecurity policies and procedures

— Alignment with recognized security

frameworks including NIST and CIS

Controls

— Third ‑ party cybersecurity assessments to

validate risk posture and compliance

— Ongoing internal security audits and

monitoring activities

— Implementation of enterprise AI

governance guidelines supporting the

responsible , ethical use of AI technologies

— Policies and safeguards to ensure

responsible data handling , protection of

sensitive information , and appropriate data

use in AI ‑ enabled processes

— Human - in - the - loop oversight for AI -

enabled processes to ensure key decision

remain centred on people

— Establishing internal communities and

learning forums to support continuous

upskilling and knowledge sharing as

technologies and risks evolve

— Integration of cybersecurity considerations

into emerging AI initiatives and digital

transformation projects

Security infrastructure and

operational resilience

— Enterprise ‑ wide encryption standards

protecting sensitive data

— Advanced threat detection and

monitoring   systems

— Security ‑ as ‑ a ‑ Service partnerships

supporting continuous monitoring and

incident response

— Comprehensive vulnerability and patch

management programs

— Enhanced third - party risk management

processes to ensure key vendors and

partners meet our cybersecurity standards

— Cross ‑ functional incident response

exercises , including executive - level

tabletop simulations , to strengthen

organizational preparedness and recovery

capabilities

Cybersecurity

and   responsible AI

At Englobe , cybersecurity and responsible AI are fundamental to our

ability to build trust with our clients , team members , and partners .

As   digital technologies evolve , we continue to strengthen our practices

to   address emerging risks related to data protection , system resilience ,

and the responsible use of innovative tools .

We maintain a mature cybersecurity program grounded in strong

governance , continuous monitoring , and high awareness across the

organization . Our approach is aligned with internationally - recognized

frameworks such as the NIST Cybersecurity Framework and CIS Critical

Security Controls , and our readiness has been independently assessed

against the United Nations ’ global benchmarks .

Our AI

governance

is guided by a people - centred AI philosophy

that ensures technology supports human expertise while preserving

accountability in critical decisions . We are advancing initiatives

focused on responsible AI use , team member education , and

ensuring cybersecurity considerations are embedded into new

technology deployments .