Click here to access subscription content at The RTJ Bridge - The Premium Version of The RiskTech Journal
〰️
Click here to access subscription content at The RTJ Bridge - The Premium Version of The RiskTech Journal 〰️
The RiskTech Journal
The RiskTech Journal is your premier source for insights on cutting-edge risk management technologies. We deliver expert analysis, industry trends, and practical solutions to help professionals stay ahead in an ever-changing risk landscape. Join us to explore the innovations shaping the future of risk management.
Live from RSA: Autonomous IRM Moves from Vision to Reality
The RSA Conference is renowned for highlighting significant shifts in cybersecurity and risk management. This year, alongside familiar conversations about persistent cybersecurity threats and regulatory pressures, a deeper transformation is occurring: the rise of Autonomous Integrated Risk Management (Autonomous IRM). Vendors at RSA 2025 are showcasing solutions that go beyond merely automating routine tasks, moving toward independently identifying, assessing, and mitigating risks across enterprise ecosystems without constant human intervention.
When Robots Walk, Risk Converges - Humanoids and the Future of Integrated Risk Management
For IRM professionals, the emergence of humanoids provides a rare moment of clarity: no single risk domain can manage this disruption in isolation. Humanoid robotics is where GRC, ERM, ORM, and TRM collide—and where their integration becomes essential.
The AI Wild West is Over — Why IRM Must Now Govern the Frontier
When John A. Wheeler and Avivah Litan collaborated as colleagues at Gartner, they shared a simple but powerful conviction: technology without governance invites risk, and risk without context invites disaster. That belief feels more urgent than ever in the age of generative AI.
This month, Avivah returned to the spotlight with a compelling Gartner webinar titled “A Partner Framework to Manage AI Governance, Trust, Risk and Security.” It laid out a comprehensive vision for AI Trust, Risk, and Security Management (AI TRiSM), exposing the vulnerabilities of current AI adoption strategies and presenting a future where organizations no longer treat AI oversight as optional.
But here’s the problem: most companies are still stuck in a fractured model of Governance, Risk, and Compliance (GRC). And the rise of autonomous, agentic AI systems is about to make that dysfunction terminal.
From Code to Conduct: UK Cyber Mandate and Tech Disruption Signal a Governance Reckoning
Two significant announcements this week—one from the UK government and the other from Deloitte—highlight a rapidly converging future in which cybersecurity, advanced technology, and corporate governance are no longer siloed concerns but integrated imperatives for the boardroom. While distinct in origin and focus, both developments send a clear signal: the pressure on executive leaders to govern technology risks with discipline, foresight, and accountability is mounting.
Audit at the Edge: Governing AI Before It Governs You
Artificial intelligence is no longer a side project buried in IT. It’s now embedded in decision-making processes across finance, operations, marketing, and customer service. From algorithmic underwriting to autonomous workforce tools, AI is transforming how businesses operate—and how they fail. Yet for many organizations, Internal Audit remains stuck in the past: buried in compliance checklists, siloed in function, and reliant on legacy Governance, Risk, and Compliance (GRC) systems incapable of keeping pace.
AI's Risk Reckoning: How Integrated Risk Management Can Prevent Catastrophe
Organizations must adopt a structured, enterprise-wide approach to AI risk governance to balance AI's opportunities and risks. Integrated Risk Management (IRM) provides the governance framework to manage AI risks holistically, aligning AI implementation with corporate strategy, regulatory compliance, cybersecurity, and operational resilience.
The Future of Risk Management - How AI Agents Are Transforming IRM
Artificial Intelligence (AI) agents are revolutionizing Integrated Risk Management (IRM) by enabling organizations to detect, analyze, and mitigate risks autonomously. Unlike traditional risk management frameworks that rely heavily on manual assessments and static controls, AI-driven solutions enhance speed, accuracy, and adaptability, reducing financial losses, security breaches, and compliance failures.
The Challenges of AI Agents and Why Risk Management Matters
Artificial intelligence (AI) agents are being promoted as game-changers for businesses, helping automate tasks, reduce costs, and improve efficiency. However, recent research from CB Insights shows that many companies using AI agents face three significant problems: unreliable performance, complex integration with existing systems, and lack of uniqueness among different AI solutions. These issues highlight why businesses need Integrated Risk Management (IRM)—a structured way to handle risks related to AI, including security, compliance, and performance challenges. Without proper oversight, AI agents can cause more harm than good.
Distilled Intelligence or Compressed Catastrophe? The High-Stakes Risks of Shrinking AI
Their is a great deal of hype about distilled AI, an emerging technique that trims down massive machine learning models into leaner, cheaper versions. While these distilled “student” models may look—and sometimes perform—much like their full-fledged AI counterparts, a closer inspection reveals a labyrinth of potential flaws: from amplified bias and reduced accuracy to hidden legal liabilities.
The Digital Risk Paradox - Why Corporate Digitalization Could Be Your Biggest Liability
Digital transformation has long been heralded as the corporate world's silver bullet—promising efficiency, resilience, and competitive advantage. However, emerging research suggests a more unsettling reality: the rush to digitalize may create as many risks as it mitigates.
Moving Fast and Breaking Things - The Hidden Risks of AI's Silent Upgrades
In recent months, an increasing number of organizations across finance, healthcare, and technology sectors have encountered significant disruptions caused by seemingly minor updates to their AI-driven tools. For instance, compliance teams at major financial institutions faced confusion and heightened regulatory exposure when an incremental update to their AI language models altered interpretations of regulatory guidance overnight. Without clear prior communication from the AI vendor, these subtle but impactful changes created significant operational uncertainty and regulatory scrutiny.
How Companies Can Employ AI for Compliance and Risk Management—Safely and Effectively with IRM
To fully realize AI’s potential while mitigating its risks, organizations must adopt an Integrated Risk Management (IRM) approach that provides governance, oversight, and strategic alignment between AI deployment and risk management objectives. IRM ensures that AI-driven compliance processes are not only efficient but also secure, transparent, and adaptable to regulatory changes.
Integrated Risk Management in Healthcare: Managing AI's Rapid Evolution with a Responsible Approach
This article explores the need for a holistic risk management framework to address the evolving AI use cases in healthcare. As part of our 2025 Integrated Risk Roadmap, we emphasize the critical role of IRM in ensuring that AI-driven innovations align with ethical standards, regulatory expectations, and patient trust.
The Evolving Perspective on Generative AI: From Technology Risk to Operational Risk
In financial services, generative AI (GenAI) has rapidly emerged as both a transformative opportunity and a formidable risk. According to a recent ORX survey, three-quarters of financial institutions now classify oversight of GenAI under operational risk. This pivotal shift highlights how GenAI is increasingly perceived as a broader business risk rather than merely a technology-specific challenge. For banks and other financial institutions, this development underscores the necessity of integrated risk management (IRM) frameworks to effectively navigate the complexities of AI adoption.
The Rising Tide of Cyber Threats: How Integrated Risk Management Can Combat AI-Driven Attacks
The cyber threat landscape is changing rapidly, with artificial intelligence (AI) serving as both a powerful tool for defense and a formidable weapon for attackers. In a recent interview with The Wall Street Journal, Amazon's Chief Information Security Officer, CJ Moses, revealed a staggering increase in daily cyber threats faced by the company. Over the past six to seven months, Amazon has witnessed an escalation from 100 million to an average of 750 million cyber-attack attempts per day. This exponential rise underscores the urgent need for organizations to implement Integrated Risk Management (IRM) strategies to protect their assets in an increasingly complex digital environment.
AI's Transformative Economic Potential and the Accelerated Evolution of Integrated Risk Management
Artificial intelligence (AI) is ushering in a new era that promises to redefine the global economy and risk management landscape. Recent projections by IDC estimate that AI will contribute a staggering $19.9 trillion to the global economy by 2030, driving 3.5% of the worldwide GDP. For every dollar invested in AI, an impressive $4.60 is expected in economic returns. Simultaneously, KPMG International's 2024 Future of Risk report reveals that 61% of executives anticipate a significant increase in risk levels over the next three to five years.
Wheelhouse Advisors' 2025 Predictions: Integrated Risk Management Becomes Non-Negotiable
Risk managers are now more involved than ever in integrating Enterprise Risk Management (ERM) with other risk domains and the business at large. However, the accelerating demands of AI introduce complexities that cannot be ignored. Integrated Risk Management (IRM) technology emerges as a critical tool, providing greater visibility and understanding of risks to drive actionable change.
ServiceNow and Salesforce Enter the AI Agent Arena: Paving the Way for Autonomous IRM
In my previous article on Autonomous Integrated Risk Management (IRM), I explored how AI agents are driving IRM into a new era of automation. With industry leaders like ServiceNow and Salesforce making significant strides in the AI agent market, we are witnessing a transformative moment for business technology. These advancements signal a shift in automation capabilities and present a massive opportunity to develop AI agents specifically for autonomous IRM capabilities.
NYDFS's AI Cybersecurity Guidance Explained: An IRM Approach for Banks Nationwide
On October 16, 2024, the New York State Department of Financial Services (NYDFS) issued groundbreaking guidance addressing the cybersecurity risks of artificial intelligence (AI). The guidance highlights the dual-edged nature of AI in financial services—offering unparalleled opportunities for efficiency and growth while introducing sophisticated cyber threats. As AI technologies evolve, so do the tactics of cybercriminals, necessitating a robust and integrated approach to risk management.
AI Agents: Steering Integrated Risk Management into the Autonomous Era
The Integrated Risk Management (IRM) market is on the brink of a significant transformation, projected to expand from $56.1 billion in 2024 to $133.2 billion by 2031, boasting a compound annual growth rate (CAGR) of 11.4% according to Wheelhouse Advisors. This explosive growth underscores the escalating demand for advanced risk management solutions.