AI governance rose on the list of issues committees are considering
As digital threats continue to mount across industries, cybersecurity remains the top priority for audit committees at public companies, outside of financial reporting and internal controls, according to survey findings released in theย “Audit Committee Practices Report: Common Threads Across Audit Committees,” a joint effort between Deloitte’s Center for Board Effectiveness and the Center for Audit Quality (CAQ).
On a broader scale, enterprise risk management (ERM), critical to achieving organizational objectives and safeguarding the company’s reputation and stakeholder relationships, is ranked as the second highest priority for audit committees. Finance and internal talent remain the third-highest priority for audit committees.
The report also shows how artificial intelligence (AI) governance is growing in importance as an audit committee consideration, reflective of the rapid adoption of transformative digital technologies that have ushered in a new era of business risk.
Read More on CIO Influence Interviews :ย CIO Influence Interview with Stuart Strickland, Wireless Chief Technology Officer, HPE Aruba Networking
A total of 237 respondents participated in this year’s survey, primarily on boards of U.S. (89%) public (86%) companies withย $2 billionย or more in market cap (72%). Directors on boards of financial services companies made up 27% of the respondents.
Cybersecurity is the chief priority for audit committees
The survey found that 93% of respondents ranked cybersecurity as one of their top three priorities, with 50% ranking it as the leading priority for the audit committee. Further, 71% report cybersecurity is on their agenda on a quarterly basis. Cybersecurity has consistently been ranked as the top priority of audit committees in each of the four years the survey has been conducted, a clear indication that complex and evolving risk will continue to be a focus for audit committees in years to come.
“Cybersecurity remains atop audit committees’ agendas because the stakes have never been higher,” saidย Vanessa Teitelbaum, senior director, Professional Practice, Center for Audit Quality. “With the increasing sophistication of cyber threats and the potential for significant financial, operational, and reputational harm, it’s critical for audit committees to stay ahead. Their continued focus and evolving expertise are essential to protecting organizations in this heightened risk environment.”
Audit committee effectiveness remains a priority
In the current economic and geopolitical environment, the corporate reporting landscape is constantly evolving. When presented with various strategies to enhance audit committee effectiveness, more than two-thirds of respondents (69%) felt meetings might be improved by implementing one or more of the following strategies:
- Forty percent of respondents want to improve the quality of presentations during meetings. This jumped from third last year to the top area of improvement this year.
- Thirty-four percent of respondents want more engagement and discussion from committee members during meetings.
- While most respondents feel that they have enough time to cover agenda items, some (12%) suggested they could use more time.
“As I work with audit committees, enhancing meeting effectiveness remains a top priority. In the face of new and evolving risks, the ability to better prioritize agendas, access comprehensive and timely information, and engage in open and candid discussions are critical factors that will drive efficiency and overall effectiveness,” saidย Krista Parsons, Audit & Assurance managing director and Governance and Audit Committee Program leader, Center for Board Effectiveness.
Enhanced focus on AI governance
The survey also found an increased emphasis on understanding the impact and usage of AI technologies throughout the organization by the C-suite and board. The number of respondents who identified AI governance as a priority grew year over year, jumping to 35% from 20% last year. A growing portion of audit committees are taking on primary oversight of AI governance (up to 20% from 14% last year). Still, oversight mostly falls with the full board (58%).
Additionally, survey results suggest that work has been done to develop governance structures for AI oversight, with fewer respondents (6%) acknowledging they “don’t know” where AI oversight falls within their organization this year versus last year (17%). Amid ongoing conversations around how organizations govern AI, the question of who should be responsible for primary oversight continues to evolve.
Catch more CIO Insights: CIO Influence Interview with Chris Herd, Founder & CEO of Firstbase
[To share your insights with us, please write to psen@itechseries.com ]
