Human Risk Management in Cybersecurity: Key Trends and Takeaways from it-sa 2025
Published on: 17 Oct 2025
This year’s it-sa provided a clear snapshot of where cybersecurity is heading – towards greater integration, automation, and a renewed focus on people. Conversations throughout the event highlighted just how central Human Risk Management in cybersecurity has become for building resilience in today’s digital, interconnected world.
Below are some of the key insights from the event, showing how Human Risk Management continues to drive the next evolution in cybersecurity.
AI, Deepfakes and Continuous Resilience
AI and deepfakes were among the most discussed topics at it-sa 2025, as organisations highlighted the increasing pace of cyber-attacks and data breaches. These challenges reinforce the need for continuous engagement to help people stay informed and capable of recognising evolving risks.
The takeaway is clear: cybersecurity resilience must be continuous.
That requires alignment between technology and people, supported through automation and integration — making Human Risk Management in cybersecurity an everyday part of business operations.
Cyber Threats and the Drive for Digital Sovereignty
Another standout theme this year was digital sovereignty — the principle that organisations should maintain control over their data, systems, and infrastructure. As dependence on external providers grows, maintaining sovereignty over how data is stored, used, and secured is essential to ensure business continuity during a cyberattack.
As more businesses adopt cloud-first strategies and integrate advanced technologies, retaining autonomy over data has become critical. Human Risk Management in cybersecurity plays a central role by connecting people, processes, and technology to strengthen awareness, accountability, and a culture of security.
Human Risk Management in Focus
As a leading provider of Human Risk Management solutions, MetaCompliance used it-sa 2025 to demonstrate how our platform helps organisations manage risk through personalisation and automation. Attendees saw how seamlessly our platform integrates with existing systems and how much control it offers through customisation — enabling organisations to tailor engagement that reflects their culture and behavioural goals.
What’s Next for Human Risk Management in Cybersecurity
it-sa 2025 was a valuable opportunity to share ideas, reconnect with industry peers, and explore how Human Risk Management in cybersecurity continues to evolve. MetaCompliance remains committed to helping organisations strengthen their people, enhance their security culture, and build lasting resilience in a rapidly changing threat landscape.
Frequently Asked Questions About Human Risk Management in Cybersecurity
What is Human Risk Management in cybersecurity?
Human Risk Management (HRM) focuses on identifying, reducing, and managing the human factors that contribute to cybersecurity risks through awareness, behaviour change, and engagement. To explore this topic in more depth, read the article: What is Human Risk Management.
Why is Human Risk Management important in 2025?
As cyber threats evolve, human error remains the top cause of breaches. HRM ensures people are continuously informed, resilient, and aligned with security objectives.
How does automation support Human Risk Management?
Automation helps integrate HRM into daily operations, providing ongoing monitoring, training, and feedback without disrupting workflows.
What role does digital sovereignty play in cybersecurity?
Digital sovereignty ensures organisations retain control over their data and technology, reducing dependency on third parties and improving resilience.