Navigating the New Risk Landscape: AI, Cybersecurity, Third-Party Risk & Regulatory Changes
The risks keeping CFOs up at night aren't new. But the way they connect, accelerate, and amplify each other is. In the final episode of their three-part GRC series, Embark's Adam Olsen and Managing Director Allison Bradshaw break down the risk landscape organizations are navigating right now, and what it actually takes to get ahead of it.
In this episode:
- AI governance frameworks: how to build tiered oversight proportional to risk, from chatbots to credit decisions, without slowing down adoption
- The "black box" problem: why explainability and transparency are now regulatory expectations, not just best practices
- Cybersecurity as enterprise risk: how to reframe board conversations around cyber exposure and what ransomware preparedness actually requires
- Identity, access, and the human element: why phishing remains the most common attack vector and what effective security culture looks like beyond annual training
- Data privacy in a fragmented regulatory environment: GDPR, CCPA, and the state-by-state patchwork, plus why privacy and cybersecurity programs are stronger when built together
- Third-party and vendor risk: how to apply a risk-based approach across a complex vendor ecosystem, including fourth-party exposure and ESG considerations in the supply chain
- The regulatory change problem: AI regulation, SEC cyber disclosure rules, ESG reporting requirements, and how to build compliance capabilities that don't start from scratch every time
- Why integrated risk management isn't optional: how AI, cyber, privacy, and regulatory risks connect in ways siloed functions will always miss
To connect with Allison or learn more about how Embark approaches GRC, visit embarkwithus.com.