What’s important to the chief risk officer in 2025

Technology

Innovate with emerging tech

Artificial intelligence and other emerging technologies are creating a growing appetite for risk and a corresponding imperative to deploy them to manage risk. Embracing this challenge, today’s risk executives are reframing risk as a value-creation opportunity for their organizations. They’re innovating with a human-led, tech-powered approach to risk management that helps drive sustainable growth while also improving program quality, performance and efficiency.

To get there, collaborate across the three lines to transform risk and compliance programs with an enterprise-wide approach to rationalizing technology and controls. Integrate advanced analytics, predictive modeling, automation and cloud to replace legacy tools and manual processes. Leverage AI and machine learning for risk insights to inform strategy and drive growth.

Additional ways to innovate with emerging tech

Artificial intelligence

Good governance for AI: 5 real-world insights for risk professionals

Learn why AI governance matters and the key elements for risk, compliance, legal and security leaders.

Cyber and privacy transformation

The C-suite playbook: Bridging the gaps to cyber resilience

The demand for enhanced cybersecurity is intensifying. Establishing a shared vision for preparedness is a key step to bridging to a more secure future.

Risk management

Quantum next: Navigating a new cyber threat landscape

Is your organization ready for a post-quantum world? Learn the steps to take to adopt quantum-resistant tech.

Risk

Technology risk: So pervasive, it’s hard to see

How industry leaders can align to better manage the many vulnerabilities associated with an organization’s use of technology.

Source: PwC Pulse Survey, June 2024 

Resilience

Build operational resilience

Operational resilience requires your organization to evolve continuously, protected from shocks while maintaining its ability to adapt, create value and stay competitive. However, tension can exist between the diverging goals of resilience versus agility. Balancing these competing demands requires a strategic, enterprise-wide approach to resilience that’s centrally governed and embedded into operations and the corporate culture.

Seek opportunities to collaborate on and shape your enterprise resilience strategy. Identify your critical business services, map their dependencies and integrate your resilience capabilities and reporting around those services. Align your program with your organization’s strategy, values and investment priorities. Leverage advanced technology and mine intelligence from data to help you anticipate, prevent, manage, simulate and learn from risks and disruption.

Additional ways to build operational resilience

Resilience

Enterprise resilience considerations: Questions for board members to consider

What is enterprise resilience and how can you balance the challenging demands it creates? Find out more.

Risk and regulation

Mining risk intelligence to deliver actionable insights

Learn how to balance competing priorities and evolving risk — to make confident decisions that are consistent with your organization's risk appetite.

Workforce strategy

Workforce Radar: To build the workforce of tomorrow, the time to act is now

Learn about the five workforce signals leaders can act on to successfully drive their desired workforce transformation and business outcomes.

Strategy and growth

Risk leaders, clear-eyed about perils and priorities, face obstacles

With business transformation introducing new risks, find out how executives are vying to bring risk perspectives to the planning and design phases.

Source: PwC Pulse Survey, June 2024

Reporting

Improve transparency and reporting

Transparent, accurate disclosure is critical to establishing trust and driving shareholder value, but it’s becoming increasingly complex. Effective reporting on regulatory obligations — covering cybersecurity, data protection, privacy, supply chain, ESG and AI — as well as voluntary disclosure are key to maintaining credibility with investors, regulators, customers and employees. The same goes for internal reporting to the board, especially on risks to strategic priorities like transformation and business model reinvention. Integrating risk with reporting bolsters accuracy and consistency in communications, uniting teams internally and building trust externally.

Consider how automation and tech-enabled data management can build an agile, robust reporting function that seamlessly adapts to evolving disclosure obligations. Coordinate with other teams to make sure that messaging is consistent. Enhance your risk quantification capabilities to drive informed internal decisions and foster greater external transparency.

Additional ways to improve transparency and reporting

Reporting

SEC’s cyber disclosure rule: How to prepare for disclosures in a new era of transparency

Navigating SEC cyber disclosure rules? Start here to enhance cybersecurity and fulfill the reporting requirements.

Regulatory risk

Next Move: Practical insights on regulatory and policy developments in technology

Learn about the latest regulatory and technology policy developments and how risk leaders can react.

ESG reporting

ESG regulations and your company

Prepare for the SEC climate disclosure rules and other regulations that expand ESG reporting requirements.

Source: PwC’s 2024 Trust Survey

Regulatory risk

Manage regulatory risk

Regulatory change at the federal, state and global level is accelerating. Compounding the complexity is the uncertainty introduced by the recent election and the Supreme Court’s Chevron ruling. Savvy risk leaders understand that managing evolving regulatory expectations requires agility, automation, strong data quality and governance, rationalized controls and alignment across the enterprise.

Start by confirming your regulatory change management processes are functioning effectively, enabling you to monitor new developments, assess their business impact and communicate implications to leadership. Update your enterprise risk assessment and resulting risk inventory to account for the impact and interdependencies of regulatory uncertainty on business strategies and enterprise risks. Consider adopting an AI-powered regulatory risk intelligence platform for real-time alerts and data-driven insights.

Additional ways to manage regulatory risk

Regulatory risk

Next Move: Practical insights on regulatory and policy developments in technology

Learn about the latest regulatory and technology policy developments and how risk leaders can react.

Regulatory risk

Our Take: The changing regulatory landscape

Change remains a constant in financial services regulation. Read our take on the latest developments and what they mean.

Artificial intelligence

Harnessing the power of AI in internal audit

Find out how AI can help drive elevated automation and efficiency within internal audit.

Regulation and compliance

Risk and compliance reimagined: Unlock hidden savings and performance

Learn how organizations can cut costs and improve quality by reimagining risk management and compliance programs.

Source: PwC Pulse Survey, June 2024