A new report by Optro highlights a growing gap between rapid AI adoption and enterprise governance, with nearly 75% of organisations planning to increase investments in Governance, Risk, and Compliance (GRC) technologies. Notably, 43% of firms are prioritising AI governance solutions to manage rising risks.
AI Adoption Outpaces Governance Frameworks
According to Optro’s 2026 Risk Intelligence Report, over 85% of enterprises now consider artificial intelligence a core part of their business strategy. However, existing governance frameworks—originally designed for traditional IT systems—are struggling to manage AI-related risks, especially those driven by human behavior.
Employee Behaviour Emerges as Top AI Risk
The report identifies human interaction with AI systems as the biggest risk factor:
- 34% cite employees entering sensitive data into AI tools
- 21% highlight lack of proper AI training
- 21% point to pressure for rapid adoption leading to unsafe usage
This indicates that AI risks are less about the technology itself and more about how it is used within organisations.
Fragmented AI Governance Increases Risk Exposure
AI oversight remains highly fragmented across enterprises:
- IT departments handle only 25% of governance responsibility
- Risk management accounts for 18%
- Cross-functional teams manage 17%
- Dedicated AI governance teams exist in just 10% of organisations
This lack of clear ownership creates inefficiencies in managing AI risks and responding to incidents.
The report also reveals a surge in AI-related issues over the past year:
- 40% reported inaccurate AI outputs
- 33% faced policy violations
- 28% received customer complaints linked to AI systems
Additionally, there is no clearly defined authority in many organisations to shut down problematic AI systems, further increasing operational risk.
GRC and AI Governance Investments on the Rise
Despite these challenges, enterprises are actively investing in solutions to strengthen governance:
- 75% expect to increase GRC budgets
- 43% will invest in AI governance tools
- 41% plan to enhance regulatory compliance systems
- 38% aim to upgrade existing GRC platforms
Key features in demand include automated risk assessments, regulatory tracking, third-party AI audits, and integration with existing GRC systems.
Shift Toward Proactive AI Governance
Industry experts emphasize the need for proactive and continuous AI oversight rather than reactive governance models. As AI systems and autonomous agents become more integrated into business operations, governance itself is evolving into a critical function.
The Optro report underscores a critical reality: while AI adoption is accelerating, governance frameworks are lagging behind. To ensure secure and responsible AI deployment, organisations must prioritise centralized oversight, employee training, and advanced GRC solutions to mitigate emerging risks.
