Report by AuditBoard

Risk trends to stay ahead in 2026

12 FINDINGSPublished Oct 15, 2025
View Original Report →

Key Findings

45% of enterprises are updating existing frameworks.

AuditBoardRisk trends to stay ahead in 2026·Oct 15, 2025
EnterpriseFramework

35% of enterprises are adopting new frameworks.

AuditBoardRisk trends to stay ahead in 2026·Oct 15, 2025
EnterpriseFramework

40% of enterprises plan to increase cybersecurity staffing.

AuditBoardRisk trends to stay ahead in 2026·Oct 15, 2025
EnterpriseStaffBudget

The median enterprise maps its controls to about seven frameworks.

AuditBoardRisk trends to stay ahead in 2026·Oct 15, 2025
EnterpriseFramework

The median enterprise maps its controls to about 2,700 requirements.

AuditBoardRisk trends to stay ahead in 2026·Oct 15, 2025
EnterpriseFramework

The GDPR is one of the top 5 frameworks adopted by organizations.

AuditBoardRisk trends to stay ahead in 2026·Oct 15, 2025
EnterpriseFrameworkGDPR

Fewer than 30% of enterprises feel prepared for upcoming AI governance requirements.

AuditBoardRisk trends to stay ahead in 2026·Oct 15, 2025
EnterpriseAIAI governance

ISO 27001 is one of the top 5 frameworks adopted by organizations.

AuditBoardRisk trends to stay ahead in 2026·Oct 15, 2025
EnterpriseFrameworkISO 27001

NIST Cybersecurity Framework (CSF) 2.0 is one of the top 5 frameworks adopted by organizations.

AuditBoardRisk trends to stay ahead in 2026·Oct 15, 2025
EnterpriseFrameworkNIST CSF

Enterprises conducting six or more risk assessments per year report stronger overall risk discipline and telemetry scores.

AuditBoardRisk trends to stay ahead in 2026·Oct 15, 2025
EnterpriseRisk assessment

The Secure Controls Framework (SCF) is one of the top 5 frameworks adopted by organizations.

AuditBoardRisk trends to stay ahead in 2026·Oct 15, 2025
EnterpriseFrameworkSCF

SOC 2 is one of the top 5 frameworks adopted by organizations.

AuditBoardRisk trends to stay ahead in 2026·Oct 15, 2025
EnterpriseFrameworkSOC 2