CIIA warns of rising risk amid tariffs and cyber threats

A new business poll from the Chartered Institute of Internal Auditors (CIIA) has found that “sweeping” global policy changes are having a “profound and negative” impact on the risk landscape facing businesses.

New research from the CIIA, based on a survey of almost 900 chief internal auditors across the UK and Europe, revealed that changes in laws and regulations are now the single most impacted area by recent global policy changes, cited by nearly two-thirds (64%) of respondents. 

This comes amid a backdrop of rising global trade and geopolitical tensions, including as a result of the re-election of Donald Trump and renewed US tariff threats.

In addition, cybersecurity was the second most impacted risk from rising geopolitical uncertainty-cited by half (50%) of chief internal auditors. 

This reflected an increase in the number of cyberattacks instigated by hostile states like China, Iran and Russia. 

Market volatility, shifting consumer behaviour, and intensifying competition were also flagged by 46% of respondents, as global policy changes shape consumer spending choices. 

Notably, the CIIA found that some European consumers are turning away from brands associated with the new US Administration, such as Tesla, in favour of companies whose owners are “perceived to uphold stronger ethical and moral standards”.

The findings form part of the CIIA’s flagship annual research project, Risk in Focus 2026, with this year’s report marking its 10th anniversary.

Anne Kiem OBE, CEO of the CIIA, said: “The message from our research is clear: global policy changes – whether related to trade, regulation, or climate change – are having a direct and growing impact on the risks businesses must manage. In an increasingly volatile world, internal auditors serve as a vital source of assurance against the multitude of threats organisations face. 

“We urge business leaders to work closely with their internal audit teams to gain assurance that internal control and risk management frameworks are agile, responsive, and robust in this fast-changing environment. It is also essential that boards ensure internal audit functions are properly resourced to carry out their roles effectively.”