GCs and Boards believe companies are “unprepared” for “significantly more complex” risk landscape

The risk landscape has become significantly more complex over the last three years and General Counsels (GCs) as well as Board members don’t believe their organisations are sufficiently prepared to deal with the new threats. That’s according to the Looking Glass Report prepared by global law firm Clyde & Co and Winmark, the professional network organisation.

A survey of 89 GCs and 21 of their Board member colleagues found that 78% and 74% respectively view the risk landscape as having become ‘significantly’ more complex in the last three years. It also found that they consider political risk (71% and 81%) to be the top threat facing businesses, with technological risk (66% and 71%) rating a close second.

Simon Konsta, senior partner at Clyde & Co, commented: “Businesses today are having to adapt to a 21st Century risk environment in which traditional risks such as political and property risks are being compounded by new and fast-developing risks such as cyber, climate change and reputation. How businesses respond to this environment is one of the most pressing issues facing Boards today. As this year’s report demonstrates, the GC has a leading role to play in helping the Board navigate the challenges and future-proof the business.”

John Jeffcock, CEO of Winmark, added: “In recent years, globalisation, the growth of supply chains, the advent of the age of digitisation and automation and the geopolitical and regulatory ramifications of the global financial crisis have transformed the corporate risk environment.”

Lack of preparedness

Less than half (43%) of GCs and Board members (35%) believe their organisations are sufficiently prepared for the impact of rising political risk. There’s also a significant disconnect between the views of GCs and their Boards when it comes to their organisations’ preparedness for technological risk (37% versus 60% say their organisations are prepared).

Peter Hirst, partner at Clyde & Co, observed: “It should be something of a concern that neither GCs nor the Board feel sufficiently prepared for the threat of political risks. Over the last couple of years, the political landscape has become increasingly complex, causing new and significant issues to arise which require business to be on the front foot in order to mitigate the risk. On the technological front, the old adage of the Legal Department being more risk averse rings true. This should serve as a comfort to the Board, knowing their GCs are taking the risk seriously and erring on the side of caution.”

Data breaches and cyber attacks

The research also found that GCs and Board members consider data breaches and cyber attacks to be the greatest threat linked to the use of technology. Four-fifths (78%) of GCs and Board members (79%) think that data breaches pose the greatest technological threat, with cyber attacks almost level (75% of GCs and 79% of Board members).

Worryingly, more than half of GCs (56%) and Board members (64%) feel unprepared to deal with cyber attacks, while 42% of both groups feel unprepared to handle data breaches.

Despite the concern over a lack of preparedness for cyber attacks, 42% of GCs and 33% of Board directors admit to not having a crisis plan in place.

Isabel Ost, legal director at Clyde & Co, explained: “Organisations must put together crisis management plans and practice their responses for data breaches and cyber attacks. Both present a severe risk for a companies’ operations and reputations. No IT systems are infallible. Human error continues to expose organisations so it’s essential to be prepared for the worst.”

Responsibility for risk

When it comes to who is responsible for identifying the risk factors facing an organisation, GCs generally see the legal function as having primary responsibility for both, while the Board sees a greater role for risk teams.

Peter Hirst concluded: “Whether they agree or not, it’s beneficial for the Board that GCs see their role as both identifying and reducing risks. It’s imperative to ensuring an holistic approach to risk mitigation.”

Although Brexit isn’t expected to impact financial performance in the current year, nearly half (48%) of GCs expect the long-term impact to be negative. Investment in technology is also expected to be negatively affected.

Board directors also have a somewhat gloomy outlook, with 30% of them expecting long-term financial performance metrics to suffer.

About the Author
Brian Sims BA (Hons) Hon FSyI, Editor, Risk UK (Pro-Activ Publications) Beginning his career in professional journalism at The Builder Group in March 1992, Brian was appointed Editor of Security Management Today in November 2000 having spent eight years in engineering journalism across two titles: Building Services Journal and Light & Lighting. In 2005, Brian received the BSIA Chairman’s Award for Promoting The Security Industry and, a year later, the Skills for Security Special Award for an Outstanding Contribution to the Security Business Sector. In 2008, Brian was The Security Institute’s nomination for the Association of Security Consultants’ highly prestigious Imbert Prize and, in 2013, was a nominated finalist for the Institute's George van Schalkwyk Award. An Honorary Fellow of The Security Institute, Brian serves as a Judge for the BSIA’s Security Personnel of the Year Awards and the Securitas Good Customer Award. Between 2008 and 2014, Brian pioneered the use of digital media across the security sector, including webinars and Audio Shows. Brian’s actively involved in 50-plus security groups on LinkedIn and hosts the popular Risk UK Twitter site. Brian is a frequent speaker on the conference circuit. He has organised and chaired conference programmes for both IFSEC International and ASIS International and has been published in the national media. Brian was appointed Editor of Risk UK at Pro-Activ Publications in July 2014 and as Editor of The Paper (Pro-Activ Publications' dedicated business newspaper for security professionals) in September 2015. Brian was appointed Editor of Risk Xtra at Pro-Activ Publications in May 2018.

Related Posts