TheDaryus Group, consulting and education in business continuity, risk management, cybersecurity and information privacy, pointed out the main trends for these areas in the second half of 2024. The company's goal is to inform and prepare CEOs and executives for the current corporate landscape and the challenges of the future
In recent years, risk management (GRC), business continuity and cybersecurity have become essential pillars for management and organizational resilience. As we move into 2024, new trends and challenges emerge in these areas. Therefore, we decided to inform the companies, to prepare them for the transformations that are already happening all over the world, explain Jeferson D'Addario, CEO of the Daryus Group
Among the trends listed by the organization are
- Rise of artificial intelligence in cybersecurityArtificial intelligence (AI) continues to revolutionize cybersecurity, offering advanced tools for threat detection and response. It allows for the analysis of large volumes of data and the identification of threats that could go unnoticed by humans. In 2023, there was a 50% increase in cyber attacks compared to the previous year, with sectors such as health and finance being the most affected. Furthermore, 62% of organizations believe that their cybersecurity teams are undersized to face emerging threats
- Third-party risk managementWith the increasing dependence on third parties and partners, the management of risks associated with these relationships becomes critical. Organizations are prioritizing investments in resilience and developing specific contingency plans to deal with incidents involving third parties. The creation of playbooks and the conduct of simulation exercises are best practices
- Regulation and data privacyData privacy regulation is advancing more and more. Since the implementation of the GDPR, more than 100 countries have adopted data protection laws. In the USA, privacy legislation continues to evolve with the possibility of a unified federal law, while individual states implement their own regulations. GRC professionals who understand these laws will be in high demand, since organizations need to ensure compliance to avoid penalties and maintain consumer trust
- Behavior-based security programsChanges in employee behavior are essential to reduce security risks. Programs focused on culture and safety behavior are gaining traction, as they help to minimize unsafe behaviors and increase the adoption of security controls. The goal is to achieve greater agility and effectiveness in the use of cybersecurity resources, promoting a human-centered approach. Modern Workplace Management (MWM) is a term already discussed in the strategic GRC meetings, Cyber or Security
- Cognitive and continuous technologies for GRCThe use of cognitive AI in GRC offers enormous potential to transform data into real-time decisions. Technologies such as continuous monitoring of controls and regulatory intelligence feeds are being adopted to proactively identify vulnerabilities and enhance the ability to oversee risks and controls
- Operational resilience and business continuityOperational resilience remains a priority, focusing on the ability of organizations to foresee, anticipate and manage risks before they manifest. Regulation around operational resilience is intensifying globally, with the Digital Operational Resilience Act (DORA) in Europe coming into force in 2025. Companies are strengthening their business continuity programs to ensure resilience across the value chain and with third parties. Companies that implement continuous threat exposure management (CTEM) programs have a 67% lower chance of experiencing security breaches by 2026
Stay updated with emerging trends and adopt a proactive approach in GRC, business continuity and cybersecurity are essential for the resilience and long-term success of organizations. CEOs and advisors must lead these initiatives, ensuring that your organizations are prepared to face the challenges and seize the opportunities that 2024 brings, finalizes D’Addario
