Emergent risks

What Are Emergent Risks?

Emergent risks are novel or evolving threats that are difficult to anticipate and quantify using traditional risk management frameworks. They represent new categories of peril or significant shifts in existing ones, often arising from complex interactions between various factors such as technological advancements, geopolitical shifts, environmental changes, and societal trends. Unlike well-understood risks that have historical data for analysis, emergent risks lack clear precedents, making their potential impact and likelihood challenging to assess. Within the broader field of risk management, particularly in the context of financial stability, identifying and preparing for emergent risks is crucial for organizations and economies to build resilience against unforeseen disruptions. These risks often challenge established models and require adaptive strategies.

History and Origin

While the concept of unforeseen threats has always existed, the formal recognition and study of "emergent risks" as a distinct category gained prominence in the 21st century. This rise in focus is largely attributed to the increasing interconnectedness of global systems and the accelerating pace of technological innovation. Events like the 2008 global financial crisis, which highlighted unexpected interdependencies, and the growing awareness of broad, long-term threats like climate change, underscored the inadequacy of traditional risk assessment methods.

Major global bodies, such as the World Economic Forum (WEF), began to systematically identify and report on these evolving threats. For example, the World Economic Forum Global Risks Report 2024 highlights how rapidly accelerating technological change, economic uncertainty, and geopolitical tensions contribute to an unstable global order and the rise of new or intensifying risks.⁷ The report consistently emphasizes the increasing complexity and interconnectedness of global risks, many of which were once considered emergent but have since materialized or escalated.⁶

Key Takeaways

• Emergent risks are new or significantly evolving threats that are difficult to predict or quantify using historical data.
• They often arise from complex interactions between technological, environmental, geopolitical, and societal factors.
• Traditional risk management frameworks may not adequately capture or address emergent risks.
• Proactive identification, scenario analysis, and adaptive contingency planning are essential for managing them.
• These risks can pose significant challenges to financial stability and organizational resilience.

Interpreting Emergent Risks

Interpreting emergent risks involves a qualitative and forward-looking approach rather than relying solely on quantitative historical data. Since these risks lack clear historical patterns, assessment often focuses on understanding potential drivers, interconnectedness, and cascading effects. Experts use foresight techniques, expert judgments, and cross-disciplinary collaboration to identify weak signals and potential inflection points where a minor issue could escalate into a major threat.

For instance, the rise of sophisticated artificial intelligence tools presents emergent risks related to misinformation and disinformation, which can have societal and economic repercussions.⁵ Similarly, the increasing frequency and intensity of extreme weather events linked to climate change are interpreted not just as environmental concerns but as profound threats to physical assets, infrastructure, and financial markets.⁴ Understanding emergent risks requires moving beyond traditional risk categories like operational risk or market risk to consider broader, interconnected phenomena.

Hypothetical Example

Consider a hypothetical fintech company, "InnovatePay," that has developed a new payment protocol leveraging a novel distributed ledger technology. Initially, InnovatePay assesses standard risks: market risk (competitor adoption), operational risk (system outages), and regulatory risk (existing payment laws).

However, an emergent risk could be an unforeseen vulnerability in the underlying cryptographic algorithms of the new distributed ledger, which was not apparent during development or initial testing. This vulnerability might only become apparent with advancements in quantum computing, which could theoretically break current encryption standards, or through a novel type of cyberattack that exploits the unique architecture of the protocol. Traditional cybersecurity assessments might not identify such a threat because it relies on a future technological capability or an entirely new attack vector. InnovatePay would need to engage in continuous monitoring of quantum computing research and global cyber threat intelligence, potentially running advanced stress testing simulations for future scenarios, to proactively address this emergent risk before it materializes into a catastrophic breach.

Practical Applications

Emergent risks show up across various sectors and functions, demanding adaptive strategies. In investment, identifying emergent risks helps portfolio managers prepare for volatility caused by new market dynamics. For example, the rapid evolution of crypto-assets presented significant emergent risks to financial stability, prompting the Financial Stability Board (FSB) to develop a global regulatory framework based on the principle of "same activity, same risk, same regulation" to address these evolving threats.³

In corporate planning, businesses must consider how global supply chain disruptions, previously underestimated, could become chronic issues due to geopolitical risk or climate impacts. The International Monetary Fund (IMF) has highlighted how such disruptions fueled inflation and undermined economic recovery, particularly in Europe, demonstrating an emergent economic risk.² In regulatory bodies, there's a growing recognition that risks like climate change pose an "emerging threat" to the broader financial system, requiring new approaches to oversight and supervision.¹ This highlights the need for continuous vigilance and proactive measures beyond traditional risk assessments.

Limitations and Criticisms

The primary limitation of managing emergent risks lies in their inherent unpredictability and the lack of historical data, which makes traditional quantitative modeling difficult, if not impossible. By definition, an emergent risk is something novel or poorly understood, meaning standard statistical methods, such as those used for calculating value-at-risk, are often inapplicable. This can lead to underestimation or complete oversight of potentially significant threats.

One criticism is that the concept of "emergent risks" can sometimes be used to explain away failures to identify foreseeable, albeit complex, risks. Some argue that many seemingly "emergent" issues, like the subprime mortgage crisis or significant supply chain vulnerabilities, had early warning signs that were either ignored or dismissed. The challenge lies in distinguishing a truly unforeseeable Black Swan event from a known but unquantified risk. Moreover, the broad nature of emergent risks can make it challenging to assign clear ownership and accountability within an organization, potentially leading to a diffusion of responsibility for addressing these complex, cross-cutting threats.

Emergent Risks vs. Systemic Risk

While closely related, emergent risks and systemic risk represent different aspects of threats to financial and economic stability. Systemic risk refers to the risk of collapse of an entire financial system or market, as opposed to the failure of individual entities. It often arises from existing interdependencies and concentrated exposures within a mature system, where the failure of one large participant or a critical market function triggers a cascade of failures across the system. Examples include the interconnectedness of large banks in the global financial crisis or the concentration of risk in specific financial instruments.

In contrast, emergent risks are characterized by their novelty or the significant evolution of known risks, making them difficult to identify or measure initially. They are the potential catalysts for future systemic risk. For example, a new cyberattack methodology (an emergent risk) could, if successful against critical financial infrastructure, trigger a widespread disruption that leads to systemic risk. Similarly, the long-term, non-linear impacts of climate change on asset values and insurance markets are considered emergent risks that could, over time, contribute to systemic instability. The key difference lies in their nature: systemic risk describes a state of widespread collapse due to interconnectedness, while emergent risks describe new or evolving threats that could lead to such a state.

FAQs

What are common sources of emergent risks?

Emergent risks often stem from rapid technological advancements (e.g., artificial intelligence, quantum computing), environmental shifts (climate change, resource scarcity), evolving geopolitical landscapes, and complex socio-economic changes. These sources can interact in unpredictable ways, creating novel threats.

How do organizations prepare for emergent risks if they are unpredictable?

Preparation involves adopting flexible risk management frameworks, fostering a culture of foresight, and employing tools like scenario analysis and stress testing to explore a wide range of future possibilities. Investing in resilience, adaptability, and continuous monitoring of weak signals is also key.

Are emergent risks always negative?

While often discussed in a negative context, "emergence" itself is a neutral concept. However, in risk management, emergent risks specifically refer to new or evolving threats that could have adverse impacts. The potential opportunities arising from new trends are typically referred to as "emergent opportunities."

What is the role of technology in emergent risks?

Technology is a dual-edged sword. While it can introduce new emergent risks (e.g., advanced cyber threats, AI ethics concerns), it also provides tools for better data analysis, predictive modeling, and enhanced communication, which can aid in identifying and mitigating other emergent risks. Cybersecurity is a constantly evolving field due to this interplay.