CCI employees share current surveys, experiences and evaluation on threat, compliance, governance, infosec and management points. Share particulars of your survey with us: editor@corporatecomplianceinsights.com.
Organizations spend extra time on AI threat administration as governance gaps widen
Organizations are dedicating 37% extra time to managing AI-related dangers in comparison with 12 months in the past, as speedy AI adoption exposes crucial gaps in conventional oversight processes, in keeping with a survey by governance platform supplier OneTrust. The examine of 1,250 governance executives from North America and Europe discovered that 73% report AI has revealed gaps in visibility, collaboration and coverage enforcement.
Superior AI adopters spend twice as a lot time managing AI threat as organizations nonetheless experimenting with the expertise, reflecting the elevated oversight necessities that include mature AI deployments. In the meantime, 82% of leaders say AI dangers have accelerated timelines for modernizing governance processes.
Almost half of respondents (44%) cite governance opinions occurring too late within the course of as the first barrier to efficient AI oversight. Guide compliance opinions (42%) and approval bottlenecks (36%) additionally rank amongst high challenges.
Different key findings:
- 60% of organizations report superior or mature AI utilization throughout operations.
- 98% plan to extend governance budgets subsequent yr, with a median enhance of 24%.
Most cybersecurity leaders worry nation-state assaults in subsequent 12 months
Almost 80% of cybersecurity leaders are involved their organizations may very well be focused by nation-state cyberattacks within the subsequent 12 months, reflecting heightened anxiousness about geopolitical cyber dangers, in keeping with a survey by cybersecurity supplier VikingCloud. The survey of 200 cybersecurity professionals discovered that 76% consider current or proposed cuts to US federal cybersecurity applications may enhance their group’s threat publicity.
Organizations report that each assault frequency (71%) and severity (61%) have elevated previously yr, with 59% experiencing not less than one profitable cyberattack throughout that interval. Amongst these focused, 58% suspect attackers used AI, whereas 36% say over 1 / 4 of their incidents have been brought on by insider threats, both unintended or malicious.
A notable discovering reveals vital underreporting of cybersecurity incidents. Almost half (48%) of cybersecurity leaders didn’t report materials incidents to govt management or boards previously yr, with 86% of those leaders failing to report a number of breaches. The first causes cited have been issues about punitive management reactions (40%) and potential monetary or reputational harm if incidents turned public (44%).
Different key findings:
- 68% of organizations categorical solely average confidence in detecting AI-driven threats in actual time.
- 51% have elevated safety coaching previously yr, up 46% from 2024.
- 96% report utilizing AI to automate routine cybersecurity duties.
A number of PFAS chemical substances detected in 82% of affected producer provide chains
Provide chain administration firm Assent has recognized 695 distinctive PFAS chemical substances throughout international manufacturing provide chains, marking a 30% enhance over six months as rules round “perpetually chemical substances” proceed to broaden worldwide. The evaluation of 4.5 million provider declarations discovered that 3% of analyzed elements comprise not less than one deliberately added PFAS.
Greater than 80% of Assent’s purchasers have detected PFAS of their provide chains, with PTFE (Polytetrafluoroethylene) showing in over 50% of constructive PFAS declarations because of its non-stick properties priceless in manufacturing processes and client merchandise. Amongst companies with PFAS already current, 82% have acquired declarations containing a number of PFAS chemical substances, highlighting compound threat for producers.
The findings come as lots of of PFAS rules have been proposed or enacted globally because of well being and environmental issues. The EU and US states together with California, New York, Colorado and Maine have enacted bans on PFAS use in client items, whereas firms have settled associated lawsuits for quantities exceeding $11 billion. The EPA this week upheld rules conserving polluters answerable for PFAS cleanup prices beneath Superfund legislation, regardless of chemical business opposition and inner strain to reverse the rule, the New York Occasions reported.
Different key findings:
- The highest three most declared PFAS are PTFE (53.7%), PVDF polymer (15%), and tridecafluorooctyl methacrylate (6.9%).
- PFOA salt ranks fourth at 3.3% of constructive declarations.
“The enterprise penalties of utilizing PFAS, whether or not previously or current, are unprecedented when it comes to chemical rules,” stated Cally Edgren, vice chairman of regulatory and sustainability at Assent.
Related articles
CCI employees share current surveys, experiences and evaluation on threat, compliance, governance, infosec and management points. Share particulars of your survey with us: editor@corporatecomplianceinsights.com.
Organizations spend extra time on AI threat administration as governance gaps widen
Organizations are dedicating 37% extra time to managing AI-related dangers in comparison with 12 months in the past, as speedy AI adoption exposes crucial gaps in conventional oversight processes, in keeping with a survey by governance platform supplier OneTrust. The examine of 1,250 governance executives from North America and Europe discovered that 73% report AI has revealed gaps in visibility, collaboration and coverage enforcement.
Superior AI adopters spend twice as a lot time managing AI threat as organizations nonetheless experimenting with the expertise, reflecting the elevated oversight necessities that include mature AI deployments. In the meantime, 82% of leaders say AI dangers have accelerated timelines for modernizing governance processes.
Almost half of respondents (44%) cite governance opinions occurring too late within the course of as the first barrier to efficient AI oversight. Guide compliance opinions (42%) and approval bottlenecks (36%) additionally rank amongst high challenges.
Different key findings:
- 60% of organizations report superior or mature AI utilization throughout operations.
- 98% plan to extend governance budgets subsequent yr, with a median enhance of 24%.
Most cybersecurity leaders worry nation-state assaults in subsequent 12 months
Almost 80% of cybersecurity leaders are involved their organizations may very well be focused by nation-state cyberattacks within the subsequent 12 months, reflecting heightened anxiousness about geopolitical cyber dangers, in keeping with a survey by cybersecurity supplier VikingCloud. The survey of 200 cybersecurity professionals discovered that 76% consider current or proposed cuts to US federal cybersecurity applications may enhance their group’s threat publicity.
Organizations report that each assault frequency (71%) and severity (61%) have elevated previously yr, with 59% experiencing not less than one profitable cyberattack throughout that interval. Amongst these focused, 58% suspect attackers used AI, whereas 36% say over 1 / 4 of their incidents have been brought on by insider threats, both unintended or malicious.
A notable discovering reveals vital underreporting of cybersecurity incidents. Almost half (48%) of cybersecurity leaders didn’t report materials incidents to govt management or boards previously yr, with 86% of those leaders failing to report a number of breaches. The first causes cited have been issues about punitive management reactions (40%) and potential monetary or reputational harm if incidents turned public (44%).
Different key findings:
- 68% of organizations categorical solely average confidence in detecting AI-driven threats in actual time.
- 51% have elevated safety coaching previously yr, up 46% from 2024.
- 96% report utilizing AI to automate routine cybersecurity duties.
A number of PFAS chemical substances detected in 82% of affected producer provide chains
Provide chain administration firm Assent has recognized 695 distinctive PFAS chemical substances throughout international manufacturing provide chains, marking a 30% enhance over six months as rules round “perpetually chemical substances” proceed to broaden worldwide. The evaluation of 4.5 million provider declarations discovered that 3% of analyzed elements comprise not less than one deliberately added PFAS.
Greater than 80% of Assent’s purchasers have detected PFAS of their provide chains, with PTFE (Polytetrafluoroethylene) showing in over 50% of constructive PFAS declarations because of its non-stick properties priceless in manufacturing processes and client merchandise. Amongst companies with PFAS already current, 82% have acquired declarations containing a number of PFAS chemical substances, highlighting compound threat for producers.
The findings come as lots of of PFAS rules have been proposed or enacted globally because of well being and environmental issues. The EU and US states together with California, New York, Colorado and Maine have enacted bans on PFAS use in client items, whereas firms have settled associated lawsuits for quantities exceeding $11 billion. The EPA this week upheld rules conserving polluters answerable for PFAS cleanup prices beneath Superfund legislation, regardless of chemical business opposition and inner strain to reverse the rule, the New York Occasions reported.
Different key findings:
- The highest three most declared PFAS are PTFE (53.7%), PVDF polymer (15%), and tridecafluorooctyl methacrylate (6.9%).
- PFOA salt ranks fourth at 3.3% of constructive declarations.
“The enterprise penalties of utilizing PFAS, whether or not previously or current, are unprecedented when it comes to chemical rules,” stated Cally Edgren, vice chairman of regulatory and sustainability at Assent.
