{{item.videoDuration}}
{{item.title}}
{{item.videoDuration}}
EB new styles XF - New Brand
What’s important to the chief risk officer in 2026
Executive insights
Five topics shaping the risk agenda
Future-ready CRO: Smarter, faster, leaner
As chief risk officer (CRO), you’re getting pulled in all directions. You’re in a new era of geopolitical, economic, and societal uncertainty, trying to anticipate downstream impacts across the enterprise. You’re also racing to keep pace with technology, managing its risks while developing your own AI-powered capabilities. What’s more, you’re expected to be a strategic advisor to business stakeholders. And, at the same time, there’s unrelenting pressure to cut costs and reduce headcount.
How to balance it all? Reinvent yourself as a tech-enabled, business risk strategist on a lean budget.
In the spotlight
America's AI action plan: Are your controls ready?
The White House issued its plan to spur AI innovation and security. To help navigate the coming policy actions, risk leaders should think strategically and pursue controls that balance mitigation of AI-related risks with speed-to-market objectives. With the right controls, insights, and security, your company can chart its own path for AI acceleration.
{{filterContent.facetedTitle}}
{{contentList.loadingText}}
{{contentList.loadingText}}
Building strong digital trust through transparent, responsible and secure data practices will be key to capturing AI-driven innovation and growth
Where to focus in 2026
Risk oversight
Transform and integrate your risk management capabilities
To scale capabilities while cutting costs, CROs are working across the lines of defense and with other risk-focused functions to streamline risk coverage and improve efficiency. This integrated approach moves beyond silos, enabling executives to connect risk management directly to business outcomes with real-time visibility into performance, risk, and cost drivers. With integrated risk transformation, your organization can move confidently amid the uncertainty while avoiding costly missteps and reactive fire drills.
Begin by reimagining your risk management model to be leaner, more holistic, and tied to business objectives. Collaborate across legal, compliance, regulatory, and other risk capabilities to understand overlap, gaps, and opportunities for use of more integrated technology to provide near-real-time risk insights and enable proactive risk management.
Top insights
Resilience
Technology risk: So pervasive, it’s hard to see
How business, risk, and tech leaders can align to better manage the many vulnerabilities associated with an organization’s use of technology.
Digital oversight and cybersecurity
Data risk is everywhere: 5 steps to manage it
Data risk is everywhere—are you prepared? Learn five key steps to stay ahead and help safeguard your organization.
Regulation and compliance
Risk and compliance reimagined: Unlock hidden savings and performance
Cut costs and improve quality by reimagining your risk management and compliance programs.
Organizations can transform their risk and compliance programs by looking horizontally across the silos for sustainable cost-cutting opportunities that can free up capital for reinvestment and growth
Artificial intelligence
Innovate and accelerate with AI
Future-focused risk leaders are deploying AI to reengineer end-to-end processes for risk management, compliance, and internal audit. They’re embedding AI-powered automation to replace costly, labor-intensive processes, driving productivity and reducing overhead. They’re exploring autonomous AI agents to transform their teams with a scalable, hybrid model of risk management—with even greater potential savings and ROI.
To get there, collaborate with your peers across the three lines to transform risk and compliance programs with an enterprise-wide approach to rationalizing technology and controls. Integrate AI, agentic solutions, advanced analytics, predictive modeling, and automation to replace legacy tools and manual processes. Leverage AI-enabled risk insights to inform your strategy and drive growth.
Top insights
Artificial intelligence
The end of traditional internal audit: Human-led, agent-powered
Internal audit functions face a choice—modernize or get left behind.
Artificial intelligence
What America’s AI plan means for cyber and risk leaders
To prepare for the coming policy actions, risk leaders should augment their company’s security and controls.
Risk management
Quantum next: Navigating a new cyber threat landscape
Is your organization ready for a post-quantum world? Learn the steps to take to adopt quantum-resistant tech.
Risk management
Technology risk: So pervasive, it’s hard to see
How business, risk, and tech leaders can align to better manage the many vulnerabilities associated with an organization’s use of technology.
[31%] of companies using AI agents say they're delivering measurable value in risk mitigation and regulatory compliance
Source: PwC’s AI Agent Survey
Resilience
Build operational resilience
Operational resilience helps your organization to evolve continuously, safeguarded from policy and economic shocks while maintaining its ability to adapt, compete, and create value. But tension can exist between the diverging goals of resilience versus agility. Balancing these competing demands requires a strategic, enterprise-wide approach to resilience that’s centrally governed and embedded into operations and the corporate culture.
Find opportunities to collaborate on and shape your enterprise resilience strategy. Identify your critical business services, map their dependencies, and integrate your resilience capabilities and reporting around those services. Join forces to align your program with your organization’s strategy, values, and investment priorities. Use continuous monitoring and data insights to help you anticipate, prevent, manage, simulate, and learn from risks and disruption. Prepare teams to respond rapidly when disruption happens.
Top insights
Resilience
Enterprise resilience considerations: Questions for board members to consider
What is enterprise resilience and how can you balance the challenging demands it creates?
Resilience
New world, new rules: Cybersecurity in an era of uncertainty
Global uncertainty and tech-powered threats are forcing executives to revisit their cyber strategy. Adapt your business with a new C-suite playbook.
Geopolitical risk
Tariffs are today’s catalyst for building resilience to future uncertainty and disruption
Five steps to manage the operational risk of tariffs and build resilience.
Geopolitical risk
Risk leaders navigate geopolitical turmoil with confidence, despite critical gaps
In a changing world order, find out how risk leaders can steer through complexity by embracing agility over certainty.
[Only 31%] are involved in defining resilience strategy in technology and IT management
Source: PwC Pulse Survey, June 2024
Crisis management
Strengthen your event-response capabilities
Disruption is inevitable, no matter how prepared you are. When a crisis eventually hits, your ability to mobilize quickly and effectively is critical. An initial response that’s too slow, cautious, or disorganized can make recovery and mitigation efforts that much harder.
Get ahead of the curve by creating a robust event-response readiness plan. Start by conducting scenario planning to identify the teams, processes, and tools needed to rapidly respond to a range of potential crises (operational failure, regulatory enforcement, product defect, natural disaster, executive misconduct, etc.). Develop a detailed response plan for each scenario, including actionable steps, timelines, teams responsible, and escalation protocols. Embed AI-powered tools to help inform and accelerate that response with real-time data insights. Position trusted external resources to help with communication, recovery, and remediation services on short notice.
Top insights
Crisis management
Being prepared for the next crisis: the board’s role
How to build an integrated resiliency program that combines key capabilities like crisis management, business continuity, disaster recovery, and incident-response planning.
Resilience
Automate and orchestrate your disaster recovery on AWS
How to enable resiliency across your organization’s foundational AWS environment and application services.
Crisis management
Empowering decisions through AI-driven data analytics and technology
Using advanced analytics and AI for both crisis response and proactive resilience.
Resilience
New world, new rules: Cybersecurity in an era of uncertainty
Global uncertainty and tech-powered threats are forcing executives to revisit their cyber strategy. Adapt your business with a new C-suite playbook.
The way business leaders prepare for and respond to disruptive events may determine how well the company will recover and whether it will emerge stronger
Risk and regulatory
Manage regulatory risk
Regulatory and policy shifts are accelerating. Across borders, sectors, and domains. It’s not just more rules—it’s more change, more complexity, more risk. And it’s coming at a moment of high volatility.
Savvy risk leaders aren’t waiting to react. They’re building regulatory readiness to move with change before it hits. That means agile processes, automated workflows, continuous monitoring, trusted data, and enterprise-wide alignment.
So, how prepared are you? Start by pressure-testing your regulatory change management processes. Can you spot new developments, assess their business impact, and communicate actionable insights to leadership? Explore investing in an AI-powered regulatory risk intelligence platform for real-time alerts and data-driven insights. And before the next crisis strikes, bolster your team’s ability to respond rapidly.
Top insights
Risk and regulatory
America in motion: How businesses can own their next move
The Trump administration continues to pursue a US-first economic agenda centered on cutting regulations and reshaping trade and tax policy. Learn how your company can adapt.
Risk and regulatory
Next Move: Practical insights on regulatory and policy developments in technology
Learn about the latest regulatory and technology policy developments and how risk leaders can prepare.
Risk and regulatory
Our Take: The changing regulatory landscape
Change remains a constant in financial services regulation. We cover the latest developments and what they mean.
Risk and regulatory
Health Policy and Intelligence Institute: Practical insights on regulatory and policy developments
Learn about the latest regulatory changes affecting the health sector.
The {top-3} policy shifts causing companies to rethink their short-term strategy: US economic policy, AI and data regulations, and US trade policy
Source: PwC Pulse Survey, May 2025
Explore executive insights
Identify the key focus areas of your colleagues.
Follow us
