2 minute read
EXECUTIVE BIO
As President and Chief Operating Officer, Jason Edelboim oversees day-to-day operations at Dataminr and leads its go-to-market organisation, most severe or disruptive events they have been forced to deal with, but more than half say they still don't have real-time alerting solutions in place, according to recently-published research.
However, this appears to be changing and real-time alerts will be significant focus areas in 2023 as the research also discovered these capabilities are seen by stakeholders as the most critical features to be added to risk management platforms.
Advertisement
The research was carried out by Forrester Consulting and commissioned by AI company Dataminr to evaluate the state of enterprise risk management (ERM) at midsize to large enterprises across industries in the North America, Europe, and APAC regions. Forrester surveyed 500 risk leaders to inform the commissioned study, titled Constant Disruption Is The New Status Quo, and found that organisations encounter significant organisational, strategic, and technological barriers when implementing an effective ERM strategy.
The study also found that nearly 70% of respondents said their organisations experienced at least two critical risk events in the past year, while over 40% experienced at least three, and nearly 20% suffered six or more incidents.
"Following the unprecedented events of the past three years, this research illustrates that now, more than ever, it is crucial for businesses to have a system in place to discover and manage major physical and cyber risk events," says Jason Edelboim, President and COO of Dataminr. "These findings have been incredibly valuable to help demonstrate the utility of Dataminr's real-time alerts – ultimately giving clients an earlier line of sight into high-impact events and emerging risks that could impact their organisations."
Plans to increase investment in real-time alerts
The survey found that 70% of respondents believed that optimised, real-time alerting would have helped them significantly or totally reduce the harm of the most serious or disruptive events their organisation faced last year. More than half (56%) of respondents indicated they don't have realtime alerting solutions in place today, but 62% plan to implement or expand their use of such tools, while 54% plan to increase investment over the next 12 months.
The research found that many risk leaders are taking too narrow a view of the systemic risks their organisations face. Business risk will become more, not less, complicated to manage in the future, and fewer than a third of risk leaders completely agree that risks to their business can come from anywhere. Additionally, the research found that risk strategies have significantly advanced over the past few years but still have a long way to go. Just 36% of respondents have a C-suite champion leading risk management today.
Cybersecurity and real-time alerting capabilities will also be major areas of focus going forward, according to Forrester. Respondents were most likely to cite cyber risk tools and real-time alerting capabilities as the most critical features their next risk management platform must include.
Finally, the report found that successful ERM implementations are driven by aligned leadership, vision and technology. Organisations with highly effective ERM strategies were 27% more likely to have a C-suite leader for ERM, compared to those from lower-maturity organisations. C-suite champions are empowered to work across organisational silos and coordinate with other business leaders.
The survey also found that only 8% of respondents reported that their current ERM strategies are effective or very practical across all five capabilities surveyed, including identifying, evaluating, monitoring, responding to, and communicating about, risk.
Early detection of cybersecurity events a constant challenge
The early detection of cybersecurity events such as attacks is challenging given the constantly evolving threat landscape. According to research published by the Institute of Electrical and Electronics Engineers, even with advanced monitoring, sophisticated attackers can spend more than 100 days in a system before being detected, while an IBM study found that, on average, it took companies close to seven months to detect a breach, and another two months to contain it.
Clearly, it is important for organisations to act. According to Deepwatch’s State of the Modern SOC 2022 research, 85% of security professionals say that they have experienced preventable business impacts as a result of insufficient response procedures, citing staffing issues and security alert
