{
  "docId": "019dd923-5ca1-7489-b637-1e456d0cacd9",
  "docSlug": "3cb9f4c65aa18c22",
  "documentTitle": "Parthenon Profit Warnings Q3",
  "authorId": "EY",
  "authorName": "EY-Parthenon",
  "documentKindSlug": "consulting-deck",
  "documentKindLabel": "Consulting deck",
  "sourceTypeSlug": "strategy_consulting",
  "sourceTypeLabel": "Strategy consulting",
  "presentationDate": null,
  "orientation": "landscape",
  "aspectRatio": 1.414,
  "pageNumber": 9,
  "pageCount": 15,
  "prevPage": 8,
  "nextPage": 10,
  "slideType": "key_messages",
  "function": "summarize",
  "density": "overcrowded",
  "nDataPoints": 1,
  "notes": "Includes a Gartner prediction regarding generative AI in cyber attacks.",
  "elementsJson": [
    "headline_text",
    "paragraph",
    "photo"
  ],
  "metadataConfidence": 1,
  "imagePath": null,
  "slideHref": "/slides/019dd923-5ca1-7489-b637-1e456d0cacd9/9",
  "deckHref": "/decks/019dd923-5ca1-7489-b637-1e456d0cacd9",
  "deckJsonHref": "/decks/019dd923-5ca1-7489-b637-1e456d0cacd9.json",
  "deckAnchorHref": "/decks/019dd923-5ca1-7489-b637-1e456d0cacd9#slide-9",
  "components": [
    {
      "bbox": null,
      "kind": "callout",
      "text": "Cyber risk has evolved from a technical issue to a strategic threat and brand-defining concern that sits firmly on the boardroom agenda.",
      "attrs": null,
      "subkind": null,
      "toolName": "Visual emphasis",
      "toolSlug": "visual-emphasis",
      "confidence": null,
      "componentId": "019dd951-c23d-70a9-9e94-1bda20056eaf",
      "frameworkName": null,
      "frameworkSlug": null
    },
    {
      "bbox": {
        "h": 0.46,
        "w": 0.35,
        "x": 0.575,
        "y": 0.39
      },
      "kind": "image",
      "text": null,
      "attrs": null,
      "subkind": "photo",
      "toolName": null,
      "toolSlug": null,
      "confidence": null,
      "componentId": "ace70046-8501-4780-907f-75e2aa3ff581",
      "frameworkName": null,
      "frameworkSlug": null
    },
    {
      "bbox": {
        "h": 0.08,
        "w": 0.35,
        "x": 0.575,
        "y": 0.15
      },
      "kind": "paragraph",
      "text": "To build resilience, companies need to map dependencies across their full supplier network, embed cyber security into procurement, and invest in secure backups and tested recovery protocols. Localisation and diversification strategies can reduce exposure, whilst AI and automation can enhance threat detection and response.",
      "attrs": null,
      "subkind": "paragraph",
      "toolName": null,
      "toolSlug": null,
      "confidence": null,
      "componentId": "4cc6ca51-cb6c-4eed-814a-7a09720fd7ca",
      "frameworkName": null,
      "frameworkSlug": null
    },
    {
      "bbox": {
        "h": 0.18,
        "w": 0.35,
        "x": 0.165,
        "y": 0.67
      },
      "kind": "paragraph",
      "text": "The financial and reputational fallout can be significant. Cyber attacks have forced companies to shut down production, isolate systems, and halt operations for weeks. Financial losses have run into millions, with shutdowns affecting regional economies - making this a systemic issue for government. Beyond the immediate loss in output, customer trust and investor confidence can also be seriously eroded. Credit and trade insurers may tighten terms, with businesses perceived as vulnerable facing reduced cover.",
      "attrs": null,
      "subkind": "paragraph",
      "toolName": null,
      "toolSlug": null,
      "confidence": null,
      "componentId": "9b85006c-d3e8-43f2-bfe0-fa6f17aeca9d",
      "frameworkName": null,
      "frameworkSlug": null
    },
    {
      "bbox": {
        "h": 0.1,
        "w": 0.35,
        "x": 0.165,
        "y": 0.24
      },
      "kind": "paragraph",
      "text": "The nature of cyber threats is changing. Attacks are becoming more sophisticated, often targeting supply chains as entry points. A breach at a single vendor can cascade across ecosystems, disrupting operations, damaging reputations, and shutting down the operations of companies within the supply chain.",
      "attrs": null,
      "subkind": "paragraph",
      "toolName": null,
      "toolSlug": null,
      "confidence": null,
      "componentId": "9feaacb6-089c-4d0e-b76d-12392a395a75",
      "frameworkName": null,
      "frameworkSlug": null
    },
    {
      "bbox": {
        "h": 0.08,
        "w": 0.35,
        "x": 0.165,
        "y": 0.15
      },
      "kind": "paragraph",
      "text": "Cyber risk has evolved from a technical issue to a strategic threat and brand-defining concern that sits firmly on the boardroom agenda. These incidents are no longer isolated, they're systemic, and the urgency to act has never been greater.",
      "attrs": null,
      "subkind": "paragraph",
      "toolName": null,
      "toolSlug": null,
      "confidence": null,
      "componentId": "b9e8f73a-91ee-4c71-9edf-61d204cd5163",
      "frameworkName": null,
      "frameworkSlug": null
    },
    {
      "bbox": {
        "h": 0.06,
        "w": 0.35,
        "x": 0.575,
        "y": 0.24
      },
      "kind": "paragraph",
      "text": "Cyber risk is now central to value protection. In a volatile and interconnected world, companies must move beyond reactive measures and embed cyber resilience into their core strategy. The cost of inaction is rising - and the time to act is now.",
      "attrs": null,
      "subkind": "paragraph",
      "toolName": null,
      "toolSlug": null,
      "confidence": null,
      "componentId": "bb5c0c1b-8c6e-4977-92da-67f56707b99a",
      "frameworkName": null,
      "frameworkSlug": null
    },
    {
      "bbox": {
        "h": 0.18,
        "w": 0.35,
        "x": 0.165,
        "y": 0.48
      },
      "kind": "paragraph",
      "text": "Cyber attacks have also placed supply chain resilience under added scrutiny. Many supplier agreements still lack robust cyber security clauses, leaving organisations exposed. As businesses deepen reliance on cloud platforms and software providers, new points of failure are emerging. Without enforceable standards and a shared understanding of risk, interdependencies can become liabilities. Gartner predicts that by 2027, 17% of cyber attacks will involve generative AI, amplifying both the scale and complexity of threats.",
      "attrs": null,
      "subkind": "paragraph",
      "toolName": null,
      "toolSlug": null,
      "confidence": null,
      "componentId": "d87c6ab8-2d15-47f1-aae9-3c67695cf587",
      "frameworkName": null,
      "frameworkSlug": null
    },
    {
      "bbox": {
        "h": 0.12,
        "w": 0.35,
        "x": 0.165,
        "y": 0.35
      },
      "kind": "paragraph",
      "text": "Boards need to ask themselves tough questions about their vulnerabilities. What are our critical assets? Who owns cyber risk? How prepared are we to detect, respond to, and recover from an attack? Rehearsals and scenario planning are essential - not just to test systems, but to build confidence that teams know what to do when an attack occurs.",
      "attrs": null,
      "subkind": "paragraph",
      "toolName": null,
      "toolSlug": null,
      "confidence": null,
      "componentId": "e3ad2e6d-ad40-4f21-ad52-1320002bd501",
      "frameworkName": null,
      "frameworkSlug": null
    },
    {
      "bbox": {
        "h": 0.03,
        "w": 0.4,
        "x": 0.165,
        "y": 0.095
      },
      "kind": "title",
      "text": "Cyber attacks: from IT concern to strategic imperative",
      "attrs": null,
      "subkind": "headline",
      "toolName": null,
      "toolSlug": null,
      "confidence": null,
      "componentId": "ca1a4fa5-2447-4331-81d0-c1e3538a279e",
      "frameworkName": null,
      "frameworkSlug": null
    }
  ],
  "metrics": [],
  "tools": [],
  "frameworks": [],
  "arcBeats": [
    {
      "to": 12,
      "from": 9,
      "beatId": "b4414f28-a75e-442e-955b-5f4c3e3e732c",
      "arcName": "Monroe's Motivated Sequence",
      "arcSlug": "monroes-sequence",
      "beatName": "Satisfaction",
      "beatSlug": "monroes-sequence-satisfaction",
      "evidence": "The key messages and sectors to watch slides provide insights and recommendations for building resilience.",
      "position": 2,
      "confidence": 0.8,
      "parentBeatName": "Turn",
      "parentBeatSlug": "turn"
    }
  ],
  "loops": [
    {
      "to": 9,
      "from": 9,
      "name": "Cost Of Inaction",
      "slug": "27-cost-of-inaction",
      "bestFor": "Urgent budget requests, compliance, risk mitigation",
      "matchId": "125b3620-681d-4b68-a3d9-01b1fc8891da",
      "evidence": "The slide on cyber attacks highlights the importance of addressing this issue.",
      "position": 0,
      "objective": "What are the consequences of not prioritizing cyber attacks as a strategic imperative?",
      "structure": "The Status Quo -> The Hidden Costs Accumulating -> The Future State of Inaction -> The Tipping Point",
      "confidence": 0.6,
      "description": "Quantify what happens if the audience does nothing"
    }
  ],
  "imagePathAlt": null,
  "thumbSrc": null,
  "thumbSrcAlt": null,
  "locked": true
}