An Introduction to Lockpath Chris Caldwell – VP, IRM Stategy

2. An Introduction to LockpathChris Caldwell – VP, IRM Stategy

3. Today’s Agenda Overview Analysts Focus Customers Discussion

4. Overview

5. Lockpath acquired by NAVEX Global Lockpath has been acquired by the leading ethics and compliance company, NAVEX Global, in an exciting move to bring together two leading GRC software solution providers. Jointly, we bring greater innovation and vision to address customers’ challenges from a firm with the size and scale necessary to respond to market demand.

6. Overview • Deeply invested in the Governance, Risk Management and Compliance (GRC) software industrysince it took off at the beginning of the 21st century • A market leader in providing cloud-based enterprise software for corporate governance, risk management, compliance and information security • Recognized by analysts - featured in all Gartner Critical Capabilities, Market Guides and Magic Quadrants for Risk Management except Enterprise Legal Management • ISO 27001 Certified

8. Analysts

9. " Lockpath’s IRM solution has strong features in policy management, control mapping, incident tracking and monitoring, and external data integration capabilities. An excellent workflow engine underpins these capabilities. Dashboard and risk reporting features are intuitive and easy to use. The Keylight platform has the highest ratings in supporting the use cases of business continuity management, and corporate compliance and oversight. Gartner Critical Capabilities for Integrated Risk Management, Oct. 2018 report "

10. 2019 Magic Quadrant for Integrated Risk Management Solutions Lockpath

11. 2019 Critical Capabilities for Integrated Risk Management Solutions 3.75 3.86 3.74

12. 2019 Magic Quadrant for IT Risk Management Lockpath

13. 2018 Critical Capabilities for IT Vendor Risk Management 3.78 3.79

14. Keylight was included in Gartner’s Magic Quadrants and Market Guides in previous years for the following: • Audit Management: 2017, 2014 • Business Continuity Management: 2017, 2016, 2015, 2014 • Corporate Compliance and Oversight: 2017, 2016, 2015 • IT Risk Management: 2018, 2017, 2016, 2015 • IT Vendor Risk Management: 2018, 2017, 2016, 2015, 2014 • Operational Risk Management: 2016, 2015 • Integrated Risk Management: 2018 • Market Guide for GRC: 2015 • Market Guide for Integrated Risk Management: 2016

15. Focus

16. Make Risk Actionable & Disparate data, documents and KPIs Effective governance Actionable reports and messages

17. GRC Use Cases addressed by the Keylight Platform Compliance and Policy Management Compliance Assessments, Control Assessments, Remediation Management, RACI, External Intelligence, Regulatory Change Assessments, Policy Management, Attestation, Incident Management, Reporting Operational Risk Management Risk Documentation, Control Mapping, Risk Exceptions, Issue Management, Risk Mitigation, Risk Acceptance, KRI Reporting, Workflow, Reporting Health and Safety Management Benchmark your organization’s processes and procedures against corporate policies, industry standards, and government regulations Audit Management Policy Mapping, Risk/Control Mapping, Audit Planning, Audit Risk Assessments, Audit Activities, Work Paper Management, Evidence Management, Workflow, Reporting,

18. GRC Use Cases addressed by the Keylight Platform Vendor Risk Management Risk Assessment, Control Assessment, RACI, Contract Management, Profile Management, Exception Management, Policy Awareness, Workflow, Reporting IT Risk Management Policy Management, Control Mapping, Security Data, Risk Assessments, Incident Management, Workflow, Reporting Business Continuity Management Dependency Mapping, BIA, Recovery Plans, Table Top Exercises, Reporting, Incident Management, Workflow, Reporting

19. Customers

20. Leaders Choose

21. Keylight Demo

22. Blacklight Demo

23. Contact Us info@Lockpath.com T: +1 (913) 601-4800 Website: Lockpath.com Twitter: @Lockpath