In 2024, regulators around the globe introduced a myriad of proposed cybersecurity- and privacy-focused policies and legislation to better manage emerging risks relating to emerging technologies such as generative AI (genAI), as well as those related to managing third-party relationships. Security and risk leaders sprinted to secure genAI, even as its use cases were still evolving; almost every industry experienced critical IT disruptions due to lack of resilience planning; and despite downplaying third-party risks, organizations globally saw an increase in software supply chain breaches.
With cybercrime expected to cost $12 trillion in 2025, regulators will take a more active role in protecting consumer data while organizations pivot to adopt more proactive security measures to limit material impacts. This year’s cybersecurity, risk, and privacy predictions from Forrester for 2025 reflect how organizations need to evolve to address these emerging risk domains. Here are three of those predictions:
- CISOs will deprioritize genAI use by 10% due to lack of quantifiable value. According to Forrester’s 2024 data, 35% of global CISOs and CIOs consider exploring and…
