In a letter dated April 30, 2026, APRA outlined concerns that current governance, risk management, assurance, and operational resilience practices are not keeping pace with the scale, speed, and complexity of AI adoption. The regulator's review, conducted in late 2025, assessed how entities are utilizing AI, governing and monitoring AI models, and integrating AI-enabled processes with established risk and control frameworks.
Findings indicate that sector-wide spending on AI is projected to increase by over 25% in 2026, with 86% of insurers planning to boost AI budgets, particularly for generative and agent-based applications. Despite this investment, there is a notable gap in aligning AI deployment with robust risk management practices.
For consultants in the insurance industry, this development underscores the critical importance of implementing comprehensive AI risk management strategies. Ensuring that AI technologies are deployed responsibly and in compliance with regulatory expectations is essential to maintain trust and integrity within the sector.
Consultants should consider the following actions:
- Conduct thorough assessments of AI systems to identify potential risks and vulnerabilities.
- Develop and implement governance frameworks that align AI deployment with existing risk management practices.
- Stay informed about regulatory developments and guidance related to AI in the financial sector.
- Engage in continuous education and training to keep pace with advancements in AI technologies and associated risks.
By proactively addressing these areas, consultants can play a pivotal role in helping insurers navigate the complexities of AI integration while adhering to regulatory standards and safeguarding against emerging risks.
Please Note: If this information affects you or is relevant to your circumstances, seek advice from a licensed professional.
