Are financial firms exposing themselves to AI compliance risks?

Are financial firms exposing themselves to AI compliance risks?
Survey research points to concerning gaps in governance and cybersecurity, with nine-tenths of respondents lacking policies around AI use by third parties.
NOV 04, 2024

As financial firms join a worldwide rush to embed AI into their operations, a new survey suggests most are still unprepared to manage the risks associated with artificial intelligence.

The joint research by ACA Group’s ACA Aponix and the National Society of Compliance Professionals highlights significant gaps in governance, testing, and third-party oversight practices that could leave firms exposed to cybersecurity, privacy, and operational threats.

The 2024 AI Benchmarking Survey, conducted in June and July among more than 200 compliance leaders, found that while 75 percent of respondents are either actively using or exploring AI, only a fraction have formal risk management measures in place.

Across all respondents, just 32 percent reported having an AI governance committee, and just 12 percent have adopted an AI risk management framework. Furthermore, only 18 percent have implemented a formal testing protocol for their AI tools.

In what ACA Group President Carlo di Florio highlighted as "the survey's most concerning finding," 92 percent of firms also admitted they lack policies governing AI use by third parties or service provider

“Regulators are heavily emphasizing third-party risk management, as we saw with the SEC’s Reg S-P updates, the SEC Cyber Rule, and the EU’s Digital Operational Resilience Act,” di Florio said in a statement.

The SEC is set to ramp up its focus on AI and cybersecurity over the next year. In its statement of 2025 examination priorities published last month, the federal regulator's enforcement division teased plans to gauge firms' readiness in preventing data breaches and safeguarding customer information. "[T]he Division will assess whether firms have implemented adequate policies and procedures to monitor and/or supervise their use of AI," it added.

When asked to name the top challenge to integrating AI tools within compliance frameworks, 45 percent of respondents in the ACA and NSCP's joint survey pointed to cybersecurity or privacy issues, while others cited regulatory uncertainty (42 percent) and a shortage of skilled talent (28 percent).

Despite these barriers, compliance professionals see potential value in AI, with 67 percent citing efficiency as a primary goal when it comes to using the technology for compliance. Still, nearly 68 percent of those using AI tools reported that these technologies have had “no impact” on their compliance programs to date.

“There’s widespread interest in using AI across the financial sector, yet there’s a clear disconnect when it comes to establishing the necessary safeguards,” said Lisa Crossley, executive director at NSCP. “Our survey shows that while many firms recognize the potential of AI, they lack the frameworks to manage it responsibly.”

Latest News

'Bogged down' advisors just want to have fun (again)
'Bogged down' advisors just want to have fun (again)

Jim Cahn, of Wealth Enhancement Group, lifts the lid on his firm's partnership model, his views on RIA M&A, and the widely slept-on reason why advisors are merging into larger organizations.

Vestwell unveils new emergency savings account offering
Vestwell unveils new emergency savings account offering

The fintech firm is cementing its status in the workplace savings space with its latest ESA offering, which employers can integrate into their existing benefits package.

'Money Mimosas' and other ways to show your Valentine financial love
'Money Mimosas' and other ways to show your Valentine financial love

Wealth managers offer unique ideas for couples to grow closer emotionally and financially.

Limra research finds financial confidence on the rise among Black American workers
Limra research finds financial confidence on the rise among Black American workers

Survey findings suggest increased sense of financial security and more optimistic 2025 outlook, while highlighting employers' role in ensuring retirement readiness.

DOGE efforts sideswipe muni bonds backed by federal lease payments
DOGE efforts sideswipe muni bonds backed by federal lease payments

Falling prices for some securities within the $4 trillion state and local government debt market spotlight how the push to shrink spending is sending shockwaves across the US.

SPONSORED Record growth: Interval funds emerge as key players in alternative investments

Blue Vault Alts Summit highlights the role of liquidity-focused funds in reshaping advisor strategies

SPONSORED Taylor Matthews on what's behind Farther's rapid growth

From 'no clients' to reshaping wealth management, Farther blends tech and trust to deliver family-office experience at scale.