Cyber security tops insurance CROs' risk agenda as AI threats intensify
Chief risk officers at insurance firms face cyber security as their most pressing concern over the next 12 months, according to the EY-IIF Global Insurance CRO Survey. The finding reflects growing pressure from both traditional cyber threats and new risks introduced by artificial intelligence systems.
The survey places cyber risk ahead of other major concerns affecting the insurance sector. CROs must now manage threats across multiple fronts: legacy security vulnerabilities, AI-driven attack methods, and organizational resilience gaps that span technology and people.
AI reshapes the threat landscape
Artificial intelligence is changing how risks materialize, though not always in the ways industry leaders initially feared. Rather than a single catastrophic failure, CROs confront a fragmented threat surface where AI amplifies existing vulnerabilities and creates new attack vectors.
Insurance firms are simultaneously deploying AI to improve operations while managing the security implications of these same systems. This dual challenge - gaining competitive advantage through AI while protecting against AI-enabled threats - defines the current risk environment.
Digital capability gaps persist
Only 7% of global insurers have built end-to-end digital capabilities to optimize performance, creating security blind spots across the industry. Most firms operate with fragmented systems that lack integrated monitoring and response protocols.
CROs cannot secure what they cannot see. The absence of comprehensive digital infrastructure makes it harder to detect breaches, respond to incidents, and maintain consistent security standards across business units.
Governance becomes strategic
Singapore's insurance sector is reframing AI governance as a strategic priority rather than a compliance checkbox. Firms that establish clear governance frameworks early gain competitive advantage while building stakeholder trust.
Effective AI governance requires CROs to work across departments - collaborating with technology leaders on system design, with legal on regulatory compliance, and with business units on risk tolerance. This coordination determines whether AI becomes a controlled asset or an unmanaged liability.
For insurance professionals managing these risks, understanding AI for Insurance and AI for Cybersecurity Analysts has moved from optional to essential.
Your membership also unlocks:
