Intrusion Inc (INTZ): Customer relationships that drive a government-first cybersecurity growth story

Intrusion Inc sells a mix of hardware, software and consulting services focused on entity identification and advanced threat detection, monetizing through product sales and recurring Shield subscriptions plus professional services under purchase orders and contracts. The company’s revenue base is concentrated in U.S. public-sector and large-enterprise customers, with a clear go-to-market that blends direct sales, resellers/distributors and solution partners to accelerate adoption. For investors, the thesis is straightforward: topline upside depends on converting early Shield deployments and government contracts into repeatable subscription revenue while managing customer concentration risk.
Explore more customer-level signals and procurement insights at https://nullexposure.com/.

Why customer disclosures matter for INTZ valuation

Intrusion’s public disclosures and recent calls reveal a company transitioning from services-led revenues toward a SaaS-inflected model anchored by its Shield appliance and hosted Shield service. That transition changes unit economics and contract cadence: hardware shipments deliver near-term revenue, while Shield subscriptions create predictable recurring cash if adoption scales. Investor focus should be on contract renewal behavior, attachment of managed services, and the pace at which Shield move from paid proofs-of-value into multi-year subscriptions.

Key operational characteristics investors should internalize:

• High customer concentration: U.S. government buyers are a dominant revenue source, which creates revenue stability through large contracts but raises programmatic and procurement risk.
• Mixed contracting posture: Intrusion sells under purchase orders and contracts and also offers subscription-hosted services, indicating both license/shipment revenue and recurring SaaS-style revenue.
• Channel and partner reliance: The firm uses solution partners and resellers to extend reach, especially into schools and critical infrastructure.
• Ramping product stage: Shield is in a growth ramp; management describes multiple paid proofs-of-value with potential for outsized expansion.

If you want a quick audit of customer relationships and procurement signals, visit https://nullexposure.com/ for consolidated coverage.

Customer-by-customer: what management disclosed (each relationship pulled from public notes)

Below are the company’s disclosed customer relationships drawn from earnings calls and news items, summarized in plain English with source context.

Department of Defense — Shield hardware shipments (Q3 2025 earnings call)

Management reported shipping over 230 units of the Shield critical-infrastructure device as part of a previously announced Department of Defense contract at the end of Q3 2025, signifying tangible device deployments under that award. This underscores that DoD business is delivering discrete hardware units in addition to services (Q3 2025 earnings call, March 2026).

U.S. Department of Defense — award includes Shield technology and consulting (FY2025 results)

Sequential revenue growth in Q3 2025 was driven in part by new customers, specifically the U.S. Department of Defense award for both Intrusion Shield technology and consulting services, confirming the contract covers technology plus professional services (Globe and Mail / ACCESS Newswire reporting on Q3 2025 results, published March 2026).

PortNexus — solution partner driving classroom deployments (Q3 2025 earnings)

Management highlighted strong momentum from solution partner PortNexus, which is continuing to deploy the MyFlare Alert platform; Intrusion provides endpoint security functionality supporting that platform (Q3 2025 earnings call, March 2026).

PortNexus — early enthusiastic reception for MyFlare Alert (Q2 2025 earnings)

Earlier commentary from Q2 2025 described an enthusiastic reception with PortNexus for MyFlare Alert, positioning Intrusion technology as a next-generation response solution for schools and other vulnerable public institutions—evidence of an ongoing partner ramp (Q2 2025 earnings call).

PortNexus — endpoint security described in third-quarter transcript (news coverage)

An independent transcript of the Q3 2025 earnings call quotes management saying Intrusion supplies endpoint security for PortNexus deployments in classrooms and public spaces, reinforcing the partner’s role as a primary channel into education and similar public venues (earnings call transcript coverage, InsiderMonkey, March 2026).

Orca Cold Chain Solutions — multi-year applied threat intelligence purchase (FY2024)

After a successful pilot, Orca Cold Chain Solutions contracted to buy Intrusion’s applied threat intelligence for three years, showing a direct enterprise win in supply-chain security and a multi-year commitment to the company’s threat intelligence offering (Laotian Times report, May 9, 2024).

Total Information Management Corporation (TIM) — TIM to resell Intrusion solutions to Orca (FY2024)

Under a partnership announced in 2024, TIM agreed to provide Intrusion’s threat detection and prevention solutions to Orca, positioning TIM as a reseller/implementation partner to extend Intrusion’s reach into supply-chain customers (Laotian Times report, May 9, 2024).

What these relationships reveal about operating constraints and risk posture

Intrusion’s relationship set and public statements reveal several company-level operating signals investors must weigh:

• Contract type and revenue mix: Intrusion markets Shield both as shipped hardware and a hosted subscription; management explicitly accounts for Shield as a SaaS/subscription service under ASC 606, signaling a move to recurring revenue and the attendant shift in recognition and lifetime value dynamics.
• Customer concentration and materiality: Sales to U.S. government customers represented 83.8% of revenue in 2024, a material concentration that provides scale but concentrates procurement and budget risk at a program level.
• Geographic focus: The company’s end-user customer base is concentrated in North America, primarily U.S. federal, state and local government entities.
• Roles and channels: Intrusion functions as a direct seller and service provider while using distributors and resellers (normal domestic terms set at net-30), pointing to a hybrid go-to-market that leverages partners for scale while retaining service delivery responsibilities.
• Stage of adoption: Shield is in a ramping phase, with multiple paid proofs-of-value in the pipeline that management says could convert to significant sales growth; this creates asymmetric upside but also execution risk if conversions slow.
• Segment balance: While consulting services historically drove much of sales, management is actively building the Shield SaaS/software segment—which will be the key determinant of margin expansion if subscriptions scale.

These company-level signals sharpen the investment checklist: renewals and expansion within government contracts, subscription conversion rates, partner-led channel economics, and the pace at which services decline as a percent of sales.

For a consolidated, investor-ready review of customer risk and supplier signals, see our company intelligence hub at https://nullexposure.com/.

Investment implications and action items

• Upside: If Intrusion converts Shield proofs-of-value into multi-year subscriptions and cross-sells managed services, revenue will shift toward higher-margin recurring streams and increase lifetime customer value.
• Risk: Heavy reliance on U.S. government revenue (over 80% in 2024) concentrates cash-flow risk around procurement timetables and budget cycles.
• Monitor: Track quarter-to-quarter Shield subscription bookings, renewal rates, and partner channel expansion (PortNexus, TIM) as leading indicators of sustainable SaaS growth.

To review a broader set of customer relationships and constraints across emerging cybersecurity names, visit https://nullexposure.com/ for deeper analysis and continuous monitoring.