Cyber Threats and Supply Chain Vulnerabilities Top Concerns for Japanese Businesses, Aon Survey Reveals

Aon's 2025 Global Risk Management Survey Highlights Key Risks

Tokyo, Japan – Aon plc, a prominent global professional services firm, has released the Japan-specific findings of its 2025 Global Risk Management Survey, revealing that cybersecurity and supply chain vulnerabilities are the foremost concerns for business leaders across the nation. The survey, published on February 12, 2026, underscores the intricate challenges Japanese organizations face in an increasingly complex global environment.

Top Risks Identified for Japanese Enterprises

The survey, which gathered insights from nearly 3,000 risk managers, C-suite leaders, and executives across 63 countries, identifies 'Cyber Attacks/Data Breach' as the top risk for Japanese businesses, aligning with global trends. Following closely is 'Supply Chain or Distribution Failure,' which ranks as the second most significant concern. This reflects the impact of extreme weather events and mounting geopolitical instability on trade policies, compelling companies to re-evaluate their supply chains.

Other critical risks highlighted in the report include:

• Weather/Natural Disasters
• Product Liability/Recall
• Exchange Rate Fluctuation
• Geopolitical Volatility
• Rapidly Changing Market Trends
• Increasing Competition

Notably, 63.6 percent of Japanese respondents reported experiencing losses due to product liability or recall issues, while 47.6 percent cited losses from exchange rate fluctuations.

Rising Costs and Risk Management Efforts

The survey also found that 83 percent of firms in Japan are reporting rising insurable risk costs. Despite this, Japanese organizations demonstrate a strong commitment to risk management, with 74.7 percent having a formal risk management and insurance department, a figure higher than the global average of 68.4 percent. Additionally, 75.3 percent measure the total cost of insurable risk.

However, the report indicates areas for improvement in proactive risk management. For 'Cyber Attacks/Data Breaches,' only 27.2 percent of organizations have assessed the risk, 12.6 percent have developed continuity plans, and 22.3 percent have risk management plans in place.

Expert Commentary on Interconnected Risks

Tatsuya Yamamoto, CEO of Japan at Aon, emphasized the interconnected nature of these challenges. 'Japanese organisations are operating in an environment of unprecedented complexity. Cyber, weather and geopolitical risks continue to be acute challenges for Japan businesses, underscoring the need for robust risk management frameworks and agile strategies,' Yamamoto stated. He added that 'The interconnectedness of risks – where a cyber attack can disrupt supply chains or geopolitical volatility can trigger regulatory changes – demands a holistic, proactive approach to resilience.'