Claim OwnershipThe Risk Wheelhouse
Subscribed: 0Played: 0
Subscribe
© 2025 Wheelhouse Advisors LLC
Description
The Risk Wheelhouse is designed to explore how RiskTech is transforming the way companies approach risk management today and into the future. The podcast aims to provide listeners with valuable insights into integrated risk management (IRM) practices and emerging technologies. Each episode will feature a "Deep Dive" into specific topics or research reports developed by Wheelhouse Advisors, helping listeners navigate the complexities of the modern risk landscape.
46 Episodes
Reverse
Resilience isn’t a binder anymore. It’s a live system that has to perform under pressure. We pull apart the 2025 IRM Navigator™ Vendor Compass for Operational Risk Management (ORM) to show how ORM moved from back-office compliance to the execution engine of enterprise resilience. The stakes are massive. They include billions in spend, tighter regulations across the US, UK, and EU, and a rising demand for continuous, auditable proof that controls actually work when services fail. We break dow...
Your “encrypted” data may still be regulated and today the rules start to bite. We unpack how the Department of Justice’s Data Security Program moves from guidance to strict enforcement and why it reframes data governance as a national security mandate. From redefining “covered data” to treating anonymized and encrypted datasets as in-scope when they enable linkage or inference, we walk through what changes right now for risk leaders, counsel, and compliance teams. We detail the two buckets ...
Autonomous IRM is moving from the lab into the core of enterprise risk, compliance, and security and the stakes couldn’t be higher. When a self-learning agent flags threats, scores claims, or polices policy violations, who is accountable, how do we intervene, and what proof can we show regulators and customers? We unpack the three frameworks shaping credible answers: ISO/IEC 42001 as a certifiable management system that embeds AI governance into everyday processes, the EU AI Act as hard law w...
Corporate governance is undergoing a revolution in the UK, and Provision 29 of the 2024 Corporate Governance Code stands at the epicenter of this transformation. Far beyond traditional financial oversight, this groundbreaking rule mandates unprecedented transparency from company boards about their internal controls across all domains – financial, operational, compliance, and critically, technology. Taking effect in 2026, Provision 29 requires boards to actively monitor and review their risk ...
Artificial intelligence stands at a crossroads of breathtaking innovation and urgent need for responsible guardrails. Every breakthrough brings questions about safety, fairness, and accountability that can no longer be afterthoughts. The European Union has responded with the AI Act – the world's first comprehensive legal framework for artificial intelligence – and its General Purpose AI Code of Practice has already secured commitments from tech giants like OpenAI, Google, Microsoft, and Anthr...
Behind every digital business lies an invisible web of trust: the OAuth tokens silently connecting your applications. What happens when these trusted connections become your greatest vulnerability? A sophisticated attack campaign recently exploited these connections, bypassing traditional security measures to breach major cybersecurity companies including Cloudflare, Palo Alto Networks, and Proofpoint. Rather than directly attacking primary platforms, threat actors targeted Drift's OAuth int...
Governance, Risk, and Compliance (GRC) has undergone a remarkable transformation. What was once the "department of no" – characterized by manual checklists, endless audits, and rooms full of binders – has evolved into a strategic verification backbone powering trust across organizations. This radical shift positions GRC at the center of Integrated Risk Management (IRM), where policies, controls, and compliance data flow dynamically through organizations to provide real-time assurance. The ma...
Risk management evolution isn't just about new acronyms—it's about organizational survival in an increasingly complex world. When we examine the journey from checkbox compliance to genuine integration, we uncover profound lessons about how businesses navigate danger and why some approaches fundamentally fail when pressure hits. This deep dive traces the fascinating progression from Governance, Risk and Compliance (GRC) through Enterprise Risk Management (ERM) to today's Integrated Risk Manag...
The rapid proliferation of AI agents throughout enterprise environments isn't just another tech trend—it's a fundamental transformation of how organizations operate. When Nikesh Arora, CEO of Palo Alto Networks, warns that "there's going to be more agents than humans running around trying to help manage your enterprise," he's highlighting a seismic shift that demands immediate attention. These aren't simple chatbots. We're talking about autonomous systems requiring privileged access to your ...
The fog of risk management is lifting. What was once a checkbox exercise has transformed into a strategic imperative that drives enterprise resilience and competitive advantage. Dive deep with us as we explore the groundbreaking 2025 IRM Navigator™ Vendor Compass for Risk Management Consulting Report from Wheelhouse Advisors. This essential analysis maps the dramatic evolution underway in how organizations operationalize Integrated Risk Management (IRM) and the crucial role expert consulting...
Workiva's spectacular 32% stock surge after their Q2 2025 earnings reveals something much deeper than just a strong quarter. Their $215 million revenue (up 21% year-over-year) and impressive 114% net retention rate signal the market's growing confidence in their strategic transformation—a shift that parallels the entire risk management industry's evolution. What makes this story fascinating is the context. Before this surge, Workiva had struggled, with their stock down 24% over two years due...
Modern risk management stands at a precipice of transformation where AI-driven platforms are causing what ServiceNow's CEO Bill McDermott calls an "extinction-level event" for traditional software vendors. This profound shift is reshaping how organizations approach enterprise resilience, with implications for businesses across all sectors. The evolution from conventional Governance, Risk, and Compliance (GRC) to autonomous Integrated Risk Management (IRM) represents a fundamental leap forwar...
Machine-speed threats demand machine-speed responses. The digital acceleration of our world has created a fundamental challenge: how do we manage risks when they move faster than any human can possibly react? Traditional risk management approaches—with analysts reviewing alerts, manually connecting dots, and initiating responses—simply cannot keep pace with today's threat environment. The necessary evolution is towards autonomous integrated risk management (IRM), where agentic AI systems don...
The baseball All-Stars aren't the only MVPs making headlines in Atlanta this summer. Just as the MLB's finest gather at Truist Park, Wheelhouse Advisors has released their game-changing 2025 IRM Navigator™ Viewpoint Report, spotlighting the 50 most influential players in integrated risk management. This explosive market—projected to reach a staggering $147 billion by 2032—is undergoing a profound transformation. What was once a back-office compliance function has evolved into a strategic imp...
A cyber attack on UNFI, the main distributor for Whole Foods, reveals how single points of failure in interconnected business systems can cause widespread chaos. We explore the risks of fragile business models and how Integrated Risk Management (IRM) transforms vulnerabilities into strategic resilience. • Modern business efficiency often creates "brittle by design" systems with dangerous hidden dependencies • The UNFI cyber attack caused empty store shelves and $300 million in market value l...
Autonomous Integrated Risk Management (IRM) is becoming a reality with AI-powered tools providing real value, but many implementations suffer from disconnected systems that prevent true strategic alignment. • Automated risk management tools often operate in isolation within the middle validation layer • Wheelhouse Advisors' IRM Navigator™ Model identifies five interconnected layers: strategic oversight, business orchestration, threat intelligence/validation, remediation/response, and verific...
A single boardroom confrontation at SunTrust Bank in 2007 serves as the dramatic starting point for understanding a critical business blindspot. When a senior risk executive warned leadership about their reckless mortgage expansion strategy, he wasn't just ignored—he was exiled. Within months, his predictions came tragically true as the global financial crisis erupted, eventually costing SunTrust a billion-dollar settlement with the Department of Justice. This compelling narrative unveils a ...
In this week's episode, we unpack the revolutionary approach of Integrated Risk Thinking (IRT) and how it transforms traditional risk management into a strategic advantage for modern businesses. • Traditional risk management and GRC often works in silos, missing how interconnected different risks truly are • IRT is a mindset shift, not just a process or software solution • Risk insights should be used as strategic intelligence to shape business decisions • The IRM Navigator™ Model provides s...
McKinsey's provocative May 2025 report on Governance, Risk and Compliance reveals a startling reality: despite massive investments, traditional GRC approaches are falling short in today's complex business environment. Their survey of nearly 200 corporate leaders uncovers five critical weaknesses that suggest nothing less than a fundamental paradigm shift is needed. The first alarm bell rings when examining how risk functions are positioned within organizations. With 44% of risk leaders situa...
A seismic shift is underway in the Integrated Risk Management (IRM) technology market, revealed through an unexpected stock sell-off that signals much deeper transformations. What appeared as a minor tremor—Workiva's stock declining despite positive earnings—actually illuminates fundamental changes in how regulatory uncertainty directly impacts market valuations and growth expectations. The catalyst? Whispers about potential delays to the EU's Corporate Sustainability Reporting Directive and...
Comments
Download from Google Play
Download from App Store
United States