Across EMEA, regulatory frameworks such as NIS2, DORA and the EU AI Act are no longer theoretical compliance exercises. As enforcement becomes more consistent and scrutiny increases, organisations are coming under growing pressure to show that governance works in practice, not just on paper.
That is exposing weaknesses in how many organisations manage decision-making across data, cyber, third parties and emerging technologies. As regulatory demands become more interconnected, risk and compliance leaders are having to rethink how GRC operates day to day, from ownership and escalation to reporting, prioritisation and board engagement.
This session explores what regulation is revealing about current GRC structures, where organisations are tightening governance and accountability, and how leading teams are building frameworks that support timely, defensible decisions under pressure.
Speakers:
- CHAIR: Sara Benwell, EDITOR, StrategicRISK
- Ben Bachmann, Director Group Security & Architecture, Bilfinger
- Nathan Parker, Senior Research Consultant, Parker Lawrence
- Thomas Kerin, VP Product Management, Riskonnect
