Navigating the Polycrisis: Why Resilience Is Now a Business Imperative
Navigating the Polycrisis: Why Resilience Is Now a Business Imperative
By Khun Netinat Rattanapanya, Advisory Director at BDO in Thailand
Uncertainty is no longer an occasional disruption. It is the permanent condition of doing business in 2026.
Ongoing conflicts continue to reshape global trade, energy markets, and investment flows. Russia's war in Ukraine has evolved into a sustained energy crisis affecting economies far beyond Europe. Political instability in Myanmar and tensions across the Middle East send ripple effects through supply chains, commodity prices, and investor confidence worldwide. No organisation, regardless of sector or geography, remains insulated from these forces.
At the same time, AI is transforming the way we work at a pace that many organisations struggle to match. The technology brings genuine efficiency and innovation, but it also exposes businesses that cannot adapt quickly enough.
In this environment, competition is no longer simply about outperforming industry rivals. It is about competing with uncertainty itself. The central question for any organisation today is this: how do you continue to operate, and even grow, when the ground keeps shifting?
Three Risks You Can No Longer Afford to Ignore
Risk is no longer a theoretical exercise confined to boardroom strategy sessions. It is a day-to-day operational reality directly affecting financial performance and long-term viability. Three risks stand out as unavoidable.
Supply chain disruption. Geopolitical conflict drives up logistics costs and creates unpredictable delivery timelines. Over-reliance on a single manufacturing source or transport corridor is no longer merely inefficient. It is dangerous. Volatility in global energy markets compounds this vulnerability at every point in the supply chain.
Cyber warfare. As AI capabilities advance, so does the sophistication of cyber threats. State-sponsored and criminal cyberattacks now target critical infrastructure with consequences far beyond data theft. The 2021 Colonial Pipeline ransomware attack, which triggered widespread fuel shortages across the eastern United States, illustrated how quickly a cyber incident can cascade into a broad economic crisis. Similar attacks today would be far harder to contain.
Economic volatility. Rising inflation and energy costs have made traditional static budgeting models obsolete. When operating costs can shift dramatically within a single quarter, annual budgets become guesswork. Organisations that have not shifted to scenario-based budgeting and continuous forecasting are already operating at a disadvantage.
The Resilience Framework: Beyond Survival
Resilience is not simply about surviving a crisis. It is about building the systems and governance structures that allow an organisation to respond effectively when one occurs.
Good governance begins with decision-making authority. In a fast-moving crisis, slow approval chains can turn a manageable situation into a catastrophic one. Delegating authority to the appropriate operational level is not a loss of control. It is a prerequisite for timely action.
Business Continuity Planning (BCP) provides the operational backbone for crisis response, maintaining alternative supplier relationships before they are needed, ensuring IT systems have robust backup and recovery capabilities, and establishing clear protocols for operating under abnormal conditions. A disaster recovery plan is not a document that sits in a drawer. It is a capability that must be regularly tested and updated.
Organisations that treat these frameworks as bureaucratic formalities will find themselves unprepared when a crisis arrives. Those that treat them as core business infrastructure will not only survive disruptions but recover faster than their competitors.
Resilient Leadership
Resilient organisations are built by resilient leaders, and resilient leadership demands thinking that does not sacrifice long-term stability in the rush to resolve short-term crises.
The most effective leaders in uncertain environments share a common trait: they anticipate. Rather than waiting for problems to surface and reacting, they forecast potential scenarios, identify vulnerabilities in advance, and take preventive action. This is not pessimism. It is strategic discipline.
This proactive mindset must extend across every major decision, including technology adoption, workforce planning, and capital allocation. Risk management can no longer be the exclusive domain of a compliance team. It must be embedded into the way leaders at every level think and decide.
Equally important is the courage to act decisively under uncertainty. Leaders who wait too long for perfect information often find that the window for effective action has already closed. The goal is not certainty. It is timely, well-informed judgment.
Risk as a Competitive Advantage
There is a perspective on risk that deserves more attention: managed well, risk is not just a threat to be mitigated. It is a source of genuine competitive advantage.
When supply chains are disrupted, organisations with diversified supplier networks can pivot quickly, fulfil orders that competitors cannot, and capture new customer relationships in the process. During financial volatility, companies with strong balance sheets are positioned to acquire assets, enter new markets, or invest in talent when others are cutting back. Even in cybersecurity, organisations with demonstrably robust defences earn trust that has real commercial value with customers, partners, and regulators.
Organisations that treat risk management as a strategic capability rather than a compliance obligation will, over time, build structural advantages that are genuinely difficult for competitors to replicate.
The Cost of Inaction
In a world that changes this quickly, standing still is not a neutral choice. It is a decision to fall behind.
The cost of inaction is concrete. It shows up in lost contracts when a disrupted supply chain cannot deliver. It shows up in regulatory penalties and reputational damage after a preventable cyberattack. It shows up in the slow erosion of market share as more agile competitors adapt while others hesitate.
Risk governance and resilience planning are not constraints that slow organisations down. They are the tools that keep organisations moving forward, providing the clarity, structure, and preparedness to continue operating and seizing opportunities even in a hostile environment.
The organisations that will lead over the next decade are not those that were lucky enough to avoid crises. They are those that built the capability to navigate through them and came out stronger on the other side.
BDO in Thailand is a member firm of BDO International, providing audit and assurance, advisory, tax and legal, and business services to local and international organisations, with offices in Bangkok and Phuket.