The digital landscape continues to evolve at pace – unleashing significant challenges and a sense of urgency amid the need for robust cybersecurity measures. Ubiquitous digital connections and fast-emerging technologies such as AI appear to be redefining almost every facet of our professional and personal lives, making cybersecurity not just a business concern but a universal issue that affects all aspects of society. The KPMG 2024 Global CEO Outlook reveals that CEOs view cybersecurity as the top threat to businesses over the last decade.
The sixth global installment of KPMG’s annual Cybersecurity considerations report examines current and emerging obstacles that organisations are facing across various industries – and eight key cybersecurity considerations they should focus on as the rapid pace of change accelerates in today’s dynamic environment. The KPMG annual Cybersecurity considerations report identifies eight key considerations that CISOs should prioritise in 2025 to help mitigate risk, drive business growth and build resilience.
Explore the eight key cyber considerations and uncover the key actions organisations can take as they seek to accelerate recovery times, reduce the impact of incidents on employees, customers, and partners and aim to ensure their security plans enable — rather than expose — the business.
Cybersecurity considerations 2025
Modern, robust cybersecurity has become a key requirement for success as threats and costly attacks proliferate.
Download the report ⤓
Explore the eight key cybersecurity considerations for 2025
What CISOs and their teams focus on, and how they interact with the rest of the organisation is fluid, as the cybersecurity function becomes more broadly embedded within and better understood across the organisation.
As organisations continue to transform their business models in the face of new digital disruptions, many are experiencing real challenges around workload, which is exacerbating the long-discussed cyber skills gap. AI and automation can help, but there is an underlying risk of talent attrition as many teams struggle to cope.
AI is here to stay and has a place in virtually every organisational function, but there are a number of key cyber and privacy challenges that have the potential to affect the adoption and deployment of AI.
Many factors appear to be contributing to the buzz around AI adoption, from a lack of training to the fear of missing out and possibly falling behind. A key challenge is weighing the potential benefits of integrating AI into cyber and privacy functions against the potential risks.
Increasingly, many global organisations are looking to reduce the complexity and cost of their technology. Organisations that choose to do so by consolidating tools and services on to a single, or a limited number of platforms should seek to identify and navigate the inherent risks.
Although there are several initiatives around digital identity sprouting up worldwide, interoperability between systems and enhanced authentication due to the emergence of deepfakes remain challenging, whether because of regulations, risk appetite, and/or public opinion regarding the processing of personal and biometric data.
The rise of smart devices and products worldwide is challenging and changing traditional views and approaches toward security, prompting many regulators to introduce new regimes to ensure these products meet basic security requirements.
Organisations should find a way, from the CISO on down, to create a broad, holistic culture of resilient security throughout their enterprise and with the aim of ensuring all stakeholders are on the same page.
Cybersecurity considerations for New Zealand's financial services sector
These global insights resonate strongly with what we’re seeing in the New Zealand market. The need to directly mitigate the risk of ongoing technology-led transformations, continuing adoption of cloud services, and increasing use of AI – are all areas that continue to need close attention.
The data aspect of all this change has only become more critical. For all those organisations needing to do more with existing budgets, the use of AI to assist with routine cyber security tasks is now an important tool for freeing up cyber staff to focus on the really important stuff, cutting through the noise they currently experience.
Global top priorities for cyber in FS include continuous monitoring and management of third-party security risk to create more resilient supply chains; embedding security into AI approaches; and the critical role of identity in security.
We believe the role of identity and how it can help both buy down risk and enable business transformation is one of the most important opportunities for New Zealand organisations.
View KPMG's global insights on Cybersecurity considerations for the financial services sector.
