AI Systems Elevate Cybersecurity and Data Risks; Protiviti-IIA Survey Reveals Growing Technology Concerns
The 12th Annual Global Technology Audit Risks Survey by Protiviti and The Institute of Internal Auditors (IIA) reveals growing concerns about cybersecurity and data privacy risks, amplified by the rapid adoption of artificial intelligence (AI). Key findings include:
- 59% of IT audit leaders identify AI as a significant threat over the next 2-3 years
- 68% perceive high cybersecurity threat levels over the next 12 months
- 76% of organizations using AI tools in audits perceive high cybersecurity risks, compared to 65% not using AI
- Data privacy and compliance is the second-largest perceived technology risk
- 52% of auditors view data breaches as the greatest cybersecurity-related threat
The survey, polling over 1,200 executives and professionals, highlights how AI is reshaping risk perception and auditing practices. While AI enhances risk identification, it also raises concerns about long-term risks associated with advanced AI systems.
Il 12° Rapporto Annuale sui Rischi di Audit Tecnologico Globale di Protiviti e l'Istituto degli Auditori Interni (IIA) rivela un crescente timore per i rischi di cybersecurity e privacy dei dati, amplificato dall'adozione rapida dell'intelligenza artificiale (AI). I principali risultati includono:
- Il 59% dei leader dell'audit IT identificano l'AI come una minaccia significativa nei prossimi 2-3 anni
- Il 68% percepisce livelli elevati di minaccia alla cybersecurity nei prossimi 12 mesi
- Il 76% delle organizzazioni che utilizzano strumenti AI negli audit percepisce alti rischi di cybersecurity, rispetto al 65% di quelle che non utilizzano AI
- La privacy dei dati e la compliance sono il secondo rischio tecnologico percepito più grande
- Il 52% degli auditor considera le violazioni dei dati come la maggiore minaccia correlata alla cybersecurity
Il sondaggio, che ha coinvolto oltre 1.200 dirigenti e professionisti, evidenzia come l'AI stia plasmando la percezione del rischio e le pratiche di audit. Mentre l'AI migliora l'identificazione del rischio, solleva anche preoccupazioni sui rischi a lungo termine associati ai sistemi avanzati di AI.
La 12ª Encuesta Anual sobre Riesgos de Auditoría Tecnológica Global de Protiviti y el Instituto de Auditores Internos (IIA) revela crecientes preocupaciones sobre los riesgos de ciberseguridad y privacidad de datos, amplificados por la rápida adopción de inteligencia artificial (IA). Los hallazgos clave incluyen:
- El 59% de los líderes de auditoría de TI identifican la IA como una amenaza significativa en los próximos 2-3 años
- El 68% percibe altos niveles de amenaza de ciberseguridad en los próximos 12 meses
- El 76% de las organizaciones que utilizan herramientas de IA en auditorías perciben altos riesgos de ciberseguridad, en comparación con el 65% que no utilizan IA
- La privacidad de datos y el cumplimiento son el segundo riesgo tecnológico percibido más grande
- El 52% de los auditores considera que las brechas de datos son la mayor amenaza relacionada con la ciberseguridad
La encuesta, que encuestó a más de 1.200 ejecutivos y profesionales, destaca cómo la IA está moldeando la percepción del riesgo y las prácticas de auditoría. Si bien la IA mejora la identificación de riesgos, también plantea preocupaciones sobre los riesgos a largo plazo asociados con sistemas avanzados de IA.
Protiviti와 내부 감사인 협회 (IIA)가 실시한 제12회 연례 글로벌 기술 감사 위험 조사에서 사이버 보안 및 데이터 프라이버시 위험에 대한 우려가 커지고 있으며, 이는 인공지능 (AI)의 빠른 채택으로 더욱 부각되고 있습니다. 주요 결과는 다음과 같습니다:
- 59%의 IT 감사 리더가 향후 2-3년 동안 AI를 중요한 위협으로 지목하고 있음
- 68%가 향후 12개월 동안 높은 사이버 보안 위협 수준을 인식하고 있음
- 감사에서 AI 도구를 사용하는 조직의 76%가 높은 사이버 보안 위험을 인식하며, AI를 사용하지 않는 조직의 65%와 비교됨
- 데이터 프라이버시 및 규정 준수는 두 번째로 큰 기술적 위험으로 인식됨
- 52%의 감사자는 데이터 유출을 사이버 보안 관련 가장 큰 위협으로 간주함
이번 조사는 1,200명 이상의 임원 및 전문가를 대상으로 실시되었으며, AI가 위험 인식 및 감사 관행을 어떻게 재편성하고 있는지를 강조합니다. AI가 위험 식별을 개선하는 한편, 고급 AI 시스템과 관련된 장기적인 위험에 대한 우려도 제기되고 있습니다.
La 12e Enquête Annuelle sur les Risques d'Audit Technologique Mondial de Protiviti et l'Institut des Auditeurs Internes (IIA) révèle des préoccupations croissantes concernant les risques de sécurité informatique et de protection des données, amplifiées par l'adoption rapide de l'intelligence artificielle (IA). Les résultats clés incluent :
- 59 % des responsables de l'audit IT identifient l'IA comme une menace significative pour les 2-3 prochaines années
- 68 % perçoivent des niveaux élevés de menaces en matière de sécurité informatique au cours des 12 prochains mois
- 76 % des organisations utilisant des outils IA dans les audits perçoivent des risques élevés en matière de sécurité informatique, contre 65 % pour celles ne l'utilisant pas
- La protection des données et la conformité représentent le deuxième risque technologique perçu le plus important
- 52 % des auditeurs considèrent que les violations de données sont la plus grande menace liée à la sécurité informatique
L'enquête, qui a interrogé plus de 1 200 dirigeants et professionnels, souligne comment l'IA façonne la perception du risque et les pratiques d'audit. Si l'IA améliore l'identification des risques, elle soulève également des préoccupations concernant les risques à long terme associés aux systèmes avancés d'IA.
Die 12. jährliche globale Technologie-Audit-Risiken-Umfrage von Protiviti und dem Institut der Internen Auditoren (IIA) zeigt wachsende Bedenken hinsichtlich der Risiken von Cybersicherheit und Datenschutz, die durch die schnelle Verbreitung von künstlicher Intelligenz (KI) verstärkt werden. Zu den wichtigsten Ergebnissen gehören:
- 59% der IT-Audit-Leiter identifizieren KI als erhebliche Bedrohung in den nächsten 2-3 Jahren
- 68% sehen in den nächsten 12 Monaten hohe Bedrohungsniveaus für die Cybersicherheit
- 76% der Organisationen, die KI-Tools in Audits verwenden, sehen hohe Cybersicherheitsrisiken, verglichen mit 65%, die keine KI nutzen
- Datenschutz und Compliance sind das zweitgrößte wahrgenommene technologische Risiko
- 52% der Auditoren betrachten Datenverstöße als die größte Bedrohung im Zusammenhang mit der Cybersicherheit
Die Umfrage, die über 1.200 Führungskräfte und Fachleute befragt hat, hebt hervor, wie KI die Risikowahrnehmung und Auditpraktiken verändert. Während KI die Risikoidentifikation verbessert, wirft sie auch Bedenken über langfristige Risiken im Zusammenhang mit fortschrittlichen KI-Systemen auf.
- None.
- None.
12th Annual Survey cites among IT audit teams,
The 12th annual Global Technology Audit Risks Survey polled a group of over 1,200 executives and professionals, including Chief Audit Executives (CAEs) and information technology (IT) audit leaders. The survey polled these respondents on the technology risks their companies face over near-term (12 months) and, for emerging technologies, the medium-term (two to three year) time horizons.
AI taking key role in shaping technology auditing practices
The integration of AI-based tools into technology auditing is on the rise, with a majority of internal audit functions researching how this technology can enhance their processes. AIs not only offering a more comprehensive view of the risk landscape but is also amplifying concerns about key threats such as cybersecurity and data privacy. This growing reliance on AI is reshaping how auditors perceive and address these risks, with AI-enabled audits identifying higher levels of threats in these areas.
Moreover, AI-driven insights are helping organizations better prepare for these threats yet concerns about AI's longer-term risks continue to grow. In fact,
Still, IT audit leaders have concerns when looking out longer term. A majority –
"I'm excited about the increasing adoption of AI in internal audit, and making this a priority is essential for departments to stay ahead of emerging risks and opportunities," said Angelo Poulikakos, global leader of the firm's Technology Audit and Advisory practice. "Internal audit also has a unique opportunity to guide the business in adopting AI responsibly by advising on effective risk and control governance."
Cybersecurity remains top technology threat
Cybersecurity remains the top technology risk for the second year in a row, with
Data concerns prevalent
Data privacy and compliance is the second-largest perceived technology risk over the next 12 months, with data governance and integrity ranking as the third largest. Additionally,
Data privacy and compliance as well as regulatory compliance are two technology risks that saw a year-over-year (YOY) increase in perceived threat to organizations. Given the GDPR and the SEC's cybersecurity rules that came into force in late 2023 for all publicly listed US companies, it is not surprising that IT audit leaders and CFOs alike would be concerned with increased levels of preparedness to handle them.
"Cybersecurity continues to be viewed as the most significant technology threat facing organizations," said Anthony Pugliese, CIA, CPA, CGMA, CITP, President and CEO of The IIA. "As cybersecurity remains a top risk and strategic priority for leadership, internal audit functions will continue to play a key role to assist their organizations in identifying and mitigating these threats."
Survey resources available
The research report from Protiviti and The IIA, "From AI to Cyber – Deconstructing a Complex Technology Risk Landscape," is available for complimentary download, along with an infographic about the survey results, here.
About Protiviti
Protiviti (www.protiviti.com) is a global consulting firm that delivers deep expertise, objective insights, a tailored approach and unparalleled collaboration to help leaders confidently face the future. Protiviti and its independent and locally owned member firms provide clients with consulting and managed solutions in finance, technology, operations, data, digital, legal, HR, risk and internal audit through a network of more than 90 offices in over 25 countries.
Named to the Fortune 100 Best Companies to Work For® list for the 10th consecutive year, Protiviti has served more than 80 percent of Fortune 100 and nearly 80 percent of Fortune 500 companies. The firm also works with government agencies and smaller, growing companies, including those looking to go public. Protiviti is a wholly owned subsidiary of Robert Half (NYSE: RHI).
About the Institute of Internal Auditors
The Institute of Internal Auditors (IIA) is an international professional association that serves more than 245,000 global members and has awarded more than 200,000 Certified Internal Auditor (CIA) certifications worldwide. Established in 1941, The IIA is recognized throughout the world as the internal audit profession's leader in standards, certifications, education, research, and technical guidance. For more information, visit theiia.org.
View original content to download multimedia:https://www.prnewswire.com/news-releases/ai-systems-elevate-cybersecurity-and-data-risks-protiviti-iia-survey-reveals-growing-technology-concerns-302269878.html
SOURCE Protiviti
FAQ
What is the top technology risk identified in the Protiviti-IIA survey for RHI?
How does AI usage affect perceived cybersecurity risks in the Protiviti-IIA survey for RHI?
What percentage of IT audit leaders see AI as a significant threat in the next 2-3 years for RHI?
What is the second-largest perceived technology risk in the Protiviti-IIA survey for RHI?
What percentage of auditors view data breaches as the greatest cybersecurity threat for RHI?
