OECD Expert Workshop, May 13, Cyber Risk and Cyber Risk Insurance: What do we know? What can we measure? Martin Eling
|
|
- Adam Hutchinson
- 6 years ago
- Views:
Transcription
1 OECD Expert Workshop, May 13, 2017 Cyber Risk and Cyber Risk Insurance: What do we know? What can we measure? Martin Eling
2 Management Summary Research Approach: Overview of the main research topics in the fields of cyber risk and cyber risk insurance (based on a dataset of 211 papers) We also illustrate future research directions (from a practical and academic point of view) Results: Significant difficulties in insuring cyber risk, especially due to a lack of data and modelling approaches, the risk of change and risk accumulation We also discuss various ways to overcome these insurability limitations (mandatory reporting requirements, pooling of data, public private partnerships) Eling Cyber Risk and Cyber Risk Insurance May 13,
3 Motivating Example: p2.gg/fup How likely do you consider a several days lasting internet failure throughout Switzerland over the next five years? 0% 20% 40% 60% 80% 100% A few benchmarks for Switzerland: - Cyber insurance experts: 42% - Board members of SME s: 38% Eling Cyber Risk and Cyber Risk Insurance May 13,
4 Research Approach: Three clusters and ten key questions Summary of Existing Knowledge on Cyber Risk and Cyber Insurance 1. What is cyber risk? Definition and categorisation 2. What are the costs and detrimental effects caused by cyber risk? The good news 3. Where do we find data on cyber risk? 4. How can we model cyber risks? The bad news 5. Micro perspective: How should cyber risk management be organised? 6. Macro perspective: Is cyber risk a threat to the global economy and society? 7. Cyber insurance market: What is the status quo and what are the insurability challenges? The consequences Derivation of Potential Future Work (Practical Perspective) 8. What should the insurance industry do to prevent cyber risks and to support cyber insurance? 9. What should the government do to prevent cyber risks and to support cyber insurance? Derivation of Potential Future Research (Academic Perspective) 10.What are future research directions in the area of cyber risk and cyber insurance? Eling Cyber Risk and Cyber Risk Insurance May 13,
5 Any risk emerging from the use of information and communication technology (ICT) that compromises the confidentiality, availability, or integrity of data or services What is cyber risk? Causes Natural disasters Criminality War Terrorism Accidental Information and communication technology (ICT) Compromise of Confidentiality Availability Integrity Operational technology (OT) Business interruption Infrastructure breakdown Physical damage to humans and properties Risk of Change Modelling uncertainty Cyber Risk Characteristics Extreme events Data Uncertainty Interdependencies Source: Advisen Eling Cyber Risk and Cyber Risk Insurance May 13,
6 High costs and manifold detrimental effects of cyber risk 113 b USD (Symantec, 2013) 445 b USD (McAfee, 2014) on companies (stock prices, ratings) on individuals (erosion of privacy) up to b USD (Kshetri, 2010) estimates vary substantially and might be biased (Anderson et al., 2013) on economic growth (costs and benefits of ICT) major part of the effects are indirect (reputational, loss of trust, ) Eling Cyber Risk and Cyber Risk Insurance May 13,
7 Where do we find data on cyber risk? The good news Hackmageddon: Cyber Attacks Timeline Ponemon: Cost of Data Breach Studies Aggregated Data NetDiligence: Cyber Claims McAfee: Global Cost of Cybercrime Raw Data SAS OpRisk Data (Biener, Eling, Wirfs, 2015) DataLossDB (Risk Based Security) Chronology of Data Breaches (PRC) Honeynet (Honeynet.org) Internet Storm Center (ISC, SANS Institute) Eling Cyber Risk and Cyber Risk Insurance May 13,
8 Böhme and Kataria (2006) Eling & Wirfs (2016) Eling & Schnell (2016) How can we model cyber risks? The bad news Extreme value theory / peaks over threshold approach; use of heavy tail distributions (e.g. log-normal/gpd for severity, negative binomial for frequency) Problem: Non-diversification trap for heavy-tailed risks (Ibragimov et al., 2009) Another problem: Nonlinear dependence for aggregation of cyber risk (typically applying copulas). Global correlation Internal correlation Low High High Insider Attack Virus Low Hardware Failure Phishing Eling Cyber Risk and Cyber Risk Insurance May 13,
9 Cyber Insurance Status Quo and Insurability The consequences Market is very small (U.S. vs. rest of world) Conventional policies (property and liability) are frequently silent on whether cyber losses are covered (the bigger problem today) The main insurability problems are Lack of data Lack of modelling approaches Risk of change Accumulation risk Potential moral hazard problems Insurability of cyber risks: Cyber risk of daily life : Not too big to insure; within-industry collaboration useful (e.g. pooling of data) Extreme Scenarios : Difficult to insure; integration of the government (e.g. backstop for cat risk) Eling Cyber Risk and Cyber Risk Insurance May 13,
10 Cyber Insurance Status Quo and Insurability The consequences The development of a more reliable and comprehensive data set on digital security incidents and digital risk management practice would likely require: (i) consensus on typology and taxonomy; (ii) a trusted public-private digital security incident repository; (iii) incentives (e.g., mandatory notification requirements) to promote reporting of incidents and data sharing by organizations. Local Global Mandatory? + - Awareness Representativeness Direct costs Indirect costs (loss of trust) Eling Cyber Risk and Cyber Risk Insurance May 13,
11 Cyber Insurance Outlook / Future Research Micro perspective Demand side research (e.g. risk perception, fatalism) Track technology and improve own IT; revise existing policies and develop new ones Optimal risk management and regulation (e.g. modelling; how much capital is needed to cover cyber risks?) Macro perspective More scenarios analyses for measurement and management of accumulation risk Potential systemic risk from cyber risk underwriting Become part of the global dialogue with stakeholders (pooling, common vocabulary, ) Eling Cyber Risk and Cyber Risk Insurance May 13,
12 Thanks a lot for your attention! Questions? Eling Cyber Risk and Cyber Risk Insurance May 13,
EXTREME CYBER RISKS AND THE NON-DIVERSIFICATION TRAP
EXTREME CYBER RISKS AND THE NON-DIVERSIFICATION TRAP Martin Eling Werner Schnell 1 This Version: August 2017 Preliminary version Please do not cite or distribute ABSTRACT As research shows heavy tailedness
More informationCyber a risk on the rise. Digitalization Conference Beirut, 4 May 2017 Fabian Willi, Cyber Risk Reinsurance Specialist
Cyber a risk on the rise Digitalization Conference Beirut, 4 May 2017 Fabian Willi, Cyber Risk Reinsurance Specialist Cyber data breaches reaching a new level 1 000 000 000 Source: http://money.cnn.com/2016/09/22/technology/yahoo-data-breach/
More informationModelling and Management of Cyber Risk
Martin Eling and Jan Hendrik Wirfs University of St. Gallen, Switzerland Institute of Insurance Economics IAA Colloquium 2015 Oslo, Norway June 7 th 10 th, 2015 2 Contact Information Title: Authors: Martin
More informationCyber & Privacy Liability and Technology E&0
Cyber & Privacy Liability and Technology E&0 Risks and Coverage Geoff Kinsella Partner http://map.norsecorp.com http://www.youtube.com/watch?v=f7pyhn9ic9i Presentation Overview 1. The Cyber Evolution 2.
More informationSupporting digital risk management - CRO Forum work on digital incident categorisation
General Public Release Supporting digital risk management - CRO Forum work on digital incident categorisation OECD Expert Group meeting 12/13 May 2017 Nick Kitching, CRO Swiss Re Europe S.A. CRO Forum
More informationOECD PROJECT ON CYBER RISK INSURANCE
OECD PROJECT ON CYBER RISK INSURANCE April 2016 Introduction 1. Cyber risks pose a real threat to society and the economy, the recognition of which has been given increasingly wide media coverage in recent
More informationCyber Risks A Reinsurer s Perspective on Exposure & Claims. EMEA Claims Conference 2018, Rüschlikon, 6th 7th March, Anthony Cordonnier
Cyber Risks A Reinsurer s Perspective on Exposure & Claims EMEA Claims Conference 2018, Rüschlikon, 6th 7th March, Anthony Cordonnier Cyber: a claims sprint through the last year (and a bit ) Source: wikipedia.org
More informationYou ve been hacked. Riekie Gordon & Roger Truebody & Alexandra Schudel. Actuarial Society 2017 Convention October 2017
You ve been hacked Riekie Gordon & Roger Truebody & Alexandra Schudel Why should you care? U$4.6 - U$121 billion - Lloyds U$45 billion not covered 2 The plot thickens 2016 Barkly Survey: It s a business
More informationStructured ScenarioS
Structured ScenarioS A pilot experiment on peer structured scenario assessment Yao, Jane, American Bankers Association, JYao@aba.com Condamin, Laurent, Mstar, laurent.condamin@elseware.fr Naim, Patrick,
More informationENTERPRISE RISK MANAGEMENT Mumbai 10 Aug 2018
ENTERPRISE RISK MANAGEMENT Mumbai 10 Aug 2018 TOPIC : Information & Cyber Security Risk Pawan Chawla CIO & Partner About Lucideus Incubated out of IIT Bombay, we are a pure play cyber security platforms
More informationCyber Risks & Insurance
Cyber Risks & Insurance Bob Klobe Asst. Vice President & Cyber Security Subject Matter Expert Chubb Specialty Insurance Legal Disclaimer The views, information and content expressed herein are those of
More informationA GUIDE TO CYBER RISKS COVER
A GUIDE TO CYBER RISKS COVER Cyber risk the daily business threat to SMEs Cyber risks and data security breaches are a daily threat to everyday business. Less than 10% of UK companies have cyber insurance
More informationCyber Risk Pool. 21 February
21 February 2017-1 - Europe Economics is registered in England No. 3477100. Registered offices at Chancery House, 53-64 Chancery Lane, London WC2A 1QU. Whilst every effort has been made to ensure the accuracy
More informationImproving Cyber-Security Through Insurance The Past, Present, and the Future
Improving Cyber-Security Through Insurance The Past, Present, and the Future Ranjan Pal QED Research Group University of Southern California MSU Interdisciplinary Conference on Cybercrime, 2017 1 Motivating
More informationSubject SP9 Enterprise Risk Management Specialist Principles Syllabus
Subject SP9 Enterprise Risk Management Specialist Principles Syllabus for the 2019 exams 1 June 2018 Enterprise Risk Management Specialist Principles Aim The aim of the Enterprise Risk Management (ERM)
More informationMEASURING & PRICING THE COST DRIVERS OF A CYBER SECURITY RISK EVENT
MEASURING & PRICING THE COST DRIVERS OF A CYBER SECURITY RISK EVENT IOWA ACTUARIES CLUB 2/25/16 EDUCATION DAY PRESENTED BY KEITH BURKHARDT, V.P. KRAUS-ANDERSON INSURANCE Overview I. Why are cyber security
More informationSixth Annual Benchmark Study on Privacy & Security of Healthcare Data
Sixth Annual Benchmark Study on Privacy & Security of Healthcare Data Sponsored by ID Experts Independently conducted by Ponemon Institute LLC Publication Date: May 2016 Ponemon Institute Research Report
More informationCyber-Insurance: Fraud, Waste or Abuse?
SESSION ID: STR-F03 Cyber-Insurance: Fraud, Waste or Abuse? David Nathans Director of Security SOCSoter, Inc. @Zourick Cyber Insurance overview One Size Does Not Fit All 2 Our Research Reviewed many major
More informationScenario analysis. 10 th OpRisk Asia July 30, 2015 Singapore. Guntupalli Bharan Kumar
Scenario analysis 10 th OpRisk Asia July 30, 2015 Singapore Guntupalli Bharan Kumar Disclaimer Any views or opinions expressed are solely the presenter s and do not represent those of my current or past
More informationSubject ST9 Enterprise Risk Management Syllabus
Subject ST9 Enterprise Risk Management Syllabus for the 2018 exams 1 June 2017 Aim The aim of the Enterprise Risk Management (ERM) Specialist Technical subject is to instil in successful candidates the
More informationCYBER INSURANCE IN IF - with a touch of Casualty - August 18 th 2017 Kristine Birk Wagner
CYBER INSURANCE IN IF - with a touch of Casualty - August 18 th 2017 Kristine Birk Wagner CYBER EXPOSURE IN IF TOPICS Brief overview of If s Liability portfolio Cyber today s definition Cyber coverages
More informationAdd our expertise to yours Protection from the consequences of cyber risks
CyberEdge THIS INFORMATION IS INTENDED FOR INSURANCE BROKERS AND OTHER INSURANCE PROFESSIONALS ONLY Add our expertise to yours Protection from the consequences of cyber risks What is CyberEdge? 2 CyberEdge
More informationAt the Heart of Cyber Risk Mitigation
At the Heart of Cyber Risk Mitigation De-risking Cyber Threats with Insurance Vikram Singh Abstract Management of risks is an integral part of the insurance industry. Companies have succeeded in identifying
More informationS L tr lo a y t d egy s Cyber -Attack
Lloyd s Cyber-Attack Strategy 02 Introduction The focus of this paper is on insurance losses arising from malicious electronic acts, referred to throughout as cyber-attack. The malicious act is the proximate
More informationBig Data - Transforming Risk and Insurance. Driving Change
Big - Transforming Risk and Insurance George Attard Head of Aon Benfield Analytics, International Catastrophe Risk Management Market Challenges Lack of risk awareness Low disposable income High concentrations
More informationThe working roundtable was conducted through two interdisciplinary panel sessions:
As advancements in technology enhance productivity, develop new businesses and enhance economic growth, malicious actors continue to advance as well, seeking to exploit technology for any number of criminal
More informationCybersecurity Insurance: New Risks and New Challenges
SESSION ID: SDS1-F01 Cybersecurity Insurance: New Risks and New Challenges Mark Weatherford Chief Cybersecurity Strategist varmour @marktw The cybersecurity market in the Asia Pacific region contributes
More informationSummary of Form Changes e-md /MEDEFENSE Plus Insurance Policy (from version P1818CE-0115 to P1818CE-0716)
GENERAL CHANGES 1. Notice Provisions Summary of Form Changes e-md /MEDEFENSE Plus Insurance Policy (from version P1818CE-0115 to P1818CE-0716) a. Currently, the policy requires notice to the Underwriters
More informationRisk & Analytics. Trends within Insurance Companies Risk Management. Marc Paasch June Willis Towers Watson. All rights reserved.
Risk & Analytics Trends within Insurance Companies Risk Management Marc Paasch June 2017 2017 Willis Towers Watson. All rights reserved. Key drivers & benefits Outcomes from an analytical approach to own
More informationThe Importance of Speed in Cyber Underwriting. Sponsored By:
The Importance of Speed in Cyber Underwriting Sponsored By: The Importance of Speed in Cyber Underwriting Visit www.advisenltd.com at the end of this webinar to download: Copy of these slides Recording
More informationChubb Cyber Enterprise Risk Management
Chubb Cyber Enterprise Risk Management Fact Sheet Financial Lines Chubb Cyber Enterprise Risk Management When it comes to a data security breach or privacy loss, it isn t a matter of if it will happen
More informationCyber security. ETFS ISE Cyber Security GO UCITS ETF. Part of the disruptive technology thematics range
Intended for professional clients only. Cyber security ETFS ISE Cyber Security GO UCITS ETF Part of the disruptive technology thematics range Cyber security ETFS ISE Cyber Security GO UCITS ETF Key features
More informationModeling Extreme Event Risk
Modeling Extreme Event Risk Both natural catastrophes earthquakes, hurricanes, tornadoes, and floods and man-made disasters, including terrorism and extreme casualty events, can jeopardize the financial
More informationAn Overview of Cyber Insurance at AIG
An Overview of Cyber Insurance at AIG Michael Lee, MBA Cyber Business Development Manager AIG 2018 Brittney Mishler, ARM Cyber Casualty Underwriting Specialist AIG Cyber Insurance It s a peril, not a product
More informationHOW TO INSURE CYBER RISKS? Oulu Industry Summit
HOW TO INSURE CYBER RISKS? Oulu Industry Summit 2017 6.10.2017 Panu Peltomäki Liability and Financial Lines Practice Leader Marsh Oy Marsh A Leader in Quality, Scope, and Scale GLOBAL RISKS OF CONCERN
More informationBreak the Risk Paradigms - Overhauling Your Risk Program
SESSION ID: GRC-T11 Break the Risk Paradigms - Overhauling Your Risk Program Evan Wheeler MUFG Union Bank Director, Information Risk Management Your boss asks you to identify the top risks for your organization
More informationCyber Risk Proposal Form
Cyber Risk Proposal Form Company or trading name Address Postcode Country Telephone Email Website Date business established Number of employees Do you have a Chief Privacy Officer (or Chief Information
More informationA SYSTEMIC APPROACH TO THE MANAGEMENT OF RISK
ORGANISATION FOR ECONOMIC COOPERATION AND DEVELOPMENT A SYSTEMIC APPROACH TO THE MANAGEMENT OF RISK World Conference on Disaster Reduction Kobe, Japan, 18-22 January 2005 1. Background The background:
More informationRisk Management and Insurance, M.S.
Risk Management and Insurance, M.S. 1 Risk Management and Insurance, M.S. FOX SCHOOL OF BUSINESS AND MANAGEMENT (http://www.fox.temple.edu) About the Program This program is not accepting applications
More information03.5 INTERNAL CONTROL AND COMPLIANCE. CRIMINAL RISK PREVENTION
ANNUAL REPORT BANKIA 2016 03.5 AND COMPLIANCE. THE GROWING COMPLEXITY OF REGULATORY AND SUPERVISORY RULES HAS MADE AND COMPLIANCE ACTIVITIES INCREASINGLY IMPORTANT. BANKIA HAS AN EFFECTIVE ORGANISATION
More informationCYBER ATTACKS AFFECTING FINANCIAL INSTITUTIONS GUS SPRINGMANN, AON PAVEL STERNBERG, BEAZLEY
CYBER ATTACKS AFFECTING FINANCIAL INSTITUTIONS GUS SPRINGMANN, AON PAVEL STERNBERG, BEAZLEY Agenda Threat Landscape and Trends Breach Response Process Pitfalls and Critical Points BBR Services Breach Prevention
More informationThe Guide to Budgeting for Insider Threat Management
The Guide to Budgeting for Insider Threat Management The Guide to Budgeting for Insider Threat Management This guide is intended to help show you how to approach including Insider Threat Management within
More informationEMERGING INSURANCE RISKS. Presented by Lawrence Njore Apex Reinsurance Brokers- Nairobi- Kenya
EMERGING INSURANCE RISKS Presented by Lawrence Njore Apex Reinsurance Brokers- Nairobi- Kenya EMERGING RISK DEFINITIONS Lloyds: An issue that is perceived to be potentially significant but which may not
More informationBusiness Continuity Management and ERM
Business Continuity Management and ERM Partnership for Emergency Planning Kansas City Marshall Toburen GRC Strategist ERM, ORM, 3PM RSA A division of EMC 2 June 18, 2014 1 Agenda Intro State of ERM Today
More informationCybersecurity and the Law Seminar
Cybersecurity and the Law Seminar A practical walk-through of the legal landscape, enforcement, management liability and discussions on potential real-world situations Zurich 25 September 2018 What can
More informationThe Wild West Meets the Future: Key Tips for Maximizing Your Cyber and Privacy Insurance Coverage
The Wild West Meets the Future: Key Tips for Maximizing Your Cyber and Privacy Insurance Coverage James P. Bobotek james.bobotek@pillsburylaw.com (202) 663-8930 Pillsbury Winthrop Shaw Pittman LLP DOCUMENT
More informationCyber Liability A New Must Have Coverage for Your Soccer Organization
Cyber Liability A New Must Have Coverage for Your Soccer Organization Presented By: Pat Pullen Jeanne Zabuska President Underwriting Manager February 17, 2012 Why do you need Cyber Liability? Have a web
More informationCyber breaches: are you prepared?
Cyber breaches: are you prepared? Presented by Michael Gapes, Partner Overview What is cyber crime? What are the risks and impacts to your business if you are a target? What are your responsibilities do
More informationHIPAA SECURITY RISK ANALYSIS
HIPAA SECURITY RISK ANALYSIS WEDI National Conference May 18, 2004 Presented by: Lesley Berkeyheiser, The Clayton Group Andrew H. Melczer, Ph.D., ISMS Presentation Overview Key Security Points Review Risk
More informationCyber Liability State of the Insurance Market & Risk Update Sept 8, ISACA North Texas
Cyber Liability State of the Insurance Market & Risk Update Sept 8, 2016 ISACA North Texas Agenda Introduction Cyber Liability Overview State of Insurance Regulatory Update Questions and Discussion 2 Speakers
More informationSolving Cyber Risk. Security Metrics and Insurance. Jason Christopher March 2017
Solving Cyber Risk Security Metrics and Insurance Jason Christopher March 2017 How We Try to Address Cyber Risk What is Cyber Risk? Definitions Who should be concerned? Key categories of cyber risk Cyber
More informationInsuring intangible assets: Is the insurance industry keeping pace with its customers changing requirements?
Insuring intangible assets: Is the insurance industry keeping pace with its customers changing requirements? With developments in technology and the increasing value of intangible assets, does the insurance
More informationRAB comments to the Green paper on disaster insurance. Our reference: RAB Date: 15 July 2013
Position Paper RAB comments to the Green paper on disaster insurance Our reference: RAB-13-016 Date: 15 July 2013 Referring to: Related documents: Contact person: François Vilnet E-mail: francois.vilnet@partnerre.com
More informationCyber security. L&G Cyber Security UCITS ETF. Part of the disruptive technology thematics range
Intended for professional clients only. Cyber security L&G Cyber Security UCITS ETF Part of the disruptive technology thematics range Cyber security L&G Cyber Security UCITS ETF Key features Broad global
More informationINFORMATION AND CYBER SECURITY POLICY V1.1
Future Generali 1 INFORMATION AND CYBER SECURITY V1.1 Future Generali 2 Revision History Revision / Version No. 1.0 1.1 Rollout Date Location of change 14-07- 2017 Mumbai 25.04.20 18 Thane Changed by Original
More informationCyber Security & Insurance Solution Karachi, Pakistan
March 2017 Cyber Security & Insurance Solution Karachi, Pakistan Ram Garg CFA, MBA Financial & Casualty Line J B Boda & Co (Singapore) Pte Ltd Karachi Insurance Institute Agenda Cyber Risk - Background
More informationGROUP RESILIENCE & CONTINUITY POLICY (INCLUDING INCIDENT MANAGEMENT) SUMMARY FOR THIRD PARTY SUPPLIERS
GROUP RESILIENCE & CONTINUITY POLICY (INCLUDING INCIDENT MANAGEMENT) SUMMARY FOR THIRD PARTY RATIONALE This Policy sets out the Group's requirements for a robust resilience and continuity approach to protect
More informationTerrorism Risk Insurance in Australia
Terrorism Risk Insurance in Australia Dr Christopher Wallace, Michael Pennell and Norris Robertson Australian Reinsurance Pool Corporation This presentation has been prepared for the Actuaries Institute
More informationSurprisingly, only 40 percent of small and medium-sized enterprises (SMEs) believe their
When It Comes to Data Breaches, Why Are Corporations Largely Uninsured? Under Attack and Unprepared: Argo Group Cyber Insurance Survey 2017 Surprisingly, only 40 percent of small and medium-sized enterprises
More informationCybersecurity Insurance: The Catalyst We've Been Waiting For
SESSION ID: CRWD-W16 Cybersecurity Insurance: The Catalyst We've Been Waiting For Mark Weatherford Chief Cybersecurity Strategist varmour @marktw Agenda Insurance challenges in the market today 10 reasons
More informationENTERPRISE RISK MANAGEMENT (ERM) The Conceptual Framework
ENTERPRISE RISK MANAGEMENT (ERM) The Conceptual Framework ENTERPRISE RISK MANAGEMENT (ERM) ERM Definition The Conceptual Frameworks: CAS and COSO Risk Categories Implementing ERM Why ERM? ERM Maturity
More information2015 Latin America Cyber Impact Report
2015 Latin America Cyber Impact Report Sponsored by Aon Risk Services Independently conducted by Ponemon Institute LLC Publication Date: June 2015 2015 Latin America Cyber Impact Report Ponemon Institute,
More informationInstitute of Actuaries of India
Institute of Actuaries of India Subject ST7 General Insurance: Reserving & Capital Modeling September 2016 Examination INDICATIVE SOLUTION Solution 1: Restrictions on the type of business e.g. Classes
More informationCyber Liability Launch Event Moscow
Allianz Global Corporate & Specialty Cyber Liability Launch Event Moscow AGCS November 2016 Cyber Insurance market Stand Alone Business USA USA Started in the early to mid 1990 s 50 Started + carriers
More informationCyber Liability Insurance. Data Security, Privacy and Multimedia Protection
Cyber Liability Insurance Data Security, Privacy and Multimedia Protection Cyber Liability Insurance Data Security, Privacy and Multimedia Protection What is a Cyber Risk? Technology is advancing at such
More information13.1 Quantitative vs. Qualitative Analysis
436 The Security Risk Assessment Handbook risk assessment approach taken. For example, the document review methodology, physical security walk-throughs, or specific checklists are not typically described
More informationEmerging risks and insurability in a complex environment
Emerging risks and insurability in a complex environment Dr. Markus Wadé Integrated Risk Management Group Accumulation & Emerging Risks Sopot, 7 May 2014 Organisation of Munich Re Munich Re (Group)* Reinsurance
More informationIncentives and Information Security
Incentives and Information Security R. Anderson, T. Moore, S. Nagaraja and A. Ozment November 24, 2009 Motivation Many systems fail not ultimately for technical reasons but because incentives are wrong.
More informationSECURITY INCIDENT RESPONSE PEACE OF MIND IN A CHANGING WORLD
SECURITY INCIDENT RESPONSE PEACE OF MIND IN A CHANGING WORLD The insured perils Criminal abduction, assault, bribery demand, competitor malfeasance, criminal facilitation, murder, product tampering, stalking,
More informationCYBER LIABILITY INSURANCE MARKET TRENDS: SURVEY. October Sponsored by:
CYBER LIABILITY INSURANCE MARKET TRENDS: SURVEY October 2014 CYBER LIABILITY INSURANCE MARKET TRENDS: SURVEY Global reinsurer PartnerRe collaborated with Advisen to conduct a comprehensive market survey
More informationPolicy Statement PS15/17 Cyber insurance underwriting risk. July 2017
Policy Statement PS15/17 Cyber insurance underwriting risk July 2017 Prudential Regulation Authority 20 Moorgate London EC2R 6DA Policy Statement PS15/17 Cyber insurance underwriting risk July 2017 Contents
More informationRisk Assessment Process. Information Security
Risk Assessment Process Information Security February 2014 Crown copyright. This copyright work is licensed under the Creative Commons Attribution 3.0 New Zealand licence. In essence, you are free to copy,
More informationUnderstanding the Cyber Risk Insurance and Remediation Services Marketplace:
Understanding the Cyber Risk Insurance and Remediation Services Marketplace: A Report on the Experiences and Opinions of Middle Market CFOs September 2010 Betterley Risk Research Insight for the Insurance
More informationCyber Risk. October 2017
Cyber Risk October 2017 The Cyber Landscape Dimensions to cyber risk Who is likely to target your clients Which jurisdictions do they operate in? Threat Types What is their line of business? Geography
More informationSECURITY INCIDENT RESPONSE PEACE OF MIND IN A CHANGING WORLD
SECURITY INCIDENT RESPONSE PEACE OF MIND IN A CHANGING WORLD Criminal risks abduction, assault, bribery demand, competitor malfeasance, criminal facilitation, murder, product tampering, stalking, suspicious
More informationFinansinspektionen s Regulatory Code
Finansinspektionen s Regulatory Code Publisher: Finansinspektionen, Sweden, www.fi.se ISSN 1102-7460 Finansinspektionen s Regulations and General Guidelines regarding the management of operational risks;
More informationPOSSIBILITY CGIA CURRICULUM
LIMITLESSPOSSIBILITY CGIA CURRICULUM CANDIDATES BODY OF KNOWLEDGE FOR 2017 ABOUT CGIA The Chartered Global Investment Analyst (CGIA) is the world s largest and recognized professional body providing approved
More informationProperty business interruption (technology) Policy wording
Please read the schedule to see if your loss of income, loss of gross profit, increased costs of working or additional increased costs of working are covered or if a first loss limit or flexible business
More informationTerrorism, Zika, CBI - Business Operations Impacted Without Physical Damage? Now What?
Terrorism, Zika, CBI - Business Operations Impacted Without Physical Damage? Now What? Introduction - Presenters Todd Cheema Senior Vice President Senior Structurer Innovative Risk Solutions Swiss Re Direct:
More informationSecond Quarter Fiscal 2018 Investor Presentation
Second Quarter Fiscal 2018 Investor Presentation Disclaimers Non-GAAP Financial Measures The presentation presents information about the Company s non-gaap revenue, non-gaap gross margin, non-gaap operating
More informationCyber Risk Management
Cyber Risk Management Privacy & Data Protection Agenda 2 Introductions Risk Management 101 Defining & Quantifying a Breach Prevention, Mitigation & Transfer Strategies Finance Strategy- Cyber Insurance
More informationConsumer Risk Index. An annual survey of the risks Americans believe are most prevalent in their lives
Consumer Risk Index An annual survey of the risks Americans believe are most prevalent in their lives October 2015 Contents Executive summary 1 Key findings 2 Top risks 3 Demographic and regional highlights
More informationAn introduction to Operational Risk
An introduction to Operational Risk John Thirlwell Finance Dublin, 29 March 2006 Setting the scene What is operational risk? Why are we here? The operational risk management framework Basel and the Capital
More informationajg.com.au Connect and join the The ultimate guide to insurance for the construction industry
ajg.com.au Connect and join the conversation @AJG_Australia The ultimate guide to insurance for the construction industry Contents Introduction... 3 Think Gallagher... 3 Insurance requirements for the
More informationISO Cyber Risk Solutions
ISO Cyber Risk Solutions To help address a major issue facing today s cyber insurance market the need for more detailed underwriting and rating related information ISO developed loss costs informed by
More informationCyber Liability & Data Breach Insurance Nikos Georgopoulos Oracle Security Executives Breakfast 23 April Cyber Risks Advisor
Cyber Liability & Data Breach Insurance Nikos Georgopoulos Oracle Security Executives Breakfast 23 April 2013 Cyber Risks Advisor 1 Contents Information Age Directive On Network and Information Security
More informationEuropean supervision in a changing environment
Gabriel Bernardino Chairman European Insurance and Occupational Pensions Authority (EIOPA) European supervision in a changing environment Supervision and Regulation of the Financial Sector in the European
More informationTo renew the County s General Insurance Program for 2018 and consider some optional coverage for increased protection.
HALDIMAND COUNTY Report CS-SS-30-2017 General Insurance Renewal - 2018 For Consideration by Council in Committee on October 24, 2017 OBJECTIVE: To renew the County s General Insurance Program for 2018
More informationFundamental Review of the Trading Book
Fundamental Review of the Trading Book Perspectives on requirements and impact 3 rd Dec 2015 by Thomas Obitz The Fundamental Review of the Trading Book requires to deal with higher capital demands and
More informationThe environmental liability insurance market and the feasibility of a fund or risk-pooling scheme for industrial liabilities
The environmental liability insurance market and the feasibility of a fund or risk-pooling scheme for industrial liabilities Carmen Bell Policy Advisor, Non-life Insurance EC Workshop Brussels, 7 November
More informationHow to Compile and Maintain a Risk Register
How to Compile and Maintain a Risk Register Management of (negative) risks is fundamentally a simple process that consists of identifying something that can happen, what its consequences are, what your
More informationSTRENGTHENING INFRASTRUCTURE RESILIENCE THROUGH INSURANCE AND ECONOMIC INCENTIVES
STRENGTHENING INFRASTRUCTURE RESILIENCE THROUGH INSURANCE AND ECONOMIC INCENTIVES Gina Tonn Postdoctoral Research Fellow, Jeff Czajkowski Managing Director, Howard Kunreuther Academic Co-Director, Society
More informationERM Tools & Techniques 2007 ERM Symposium ERM Essentials Workshop Francis P. Sabatini
Insurance & Actuarial Advisory Services ERM Symposium Chicago, IL March 28-30, 2007 ERM Tools & Techniques 2007 ERM Symposium ERM Essentials Workshop 0 0 Francis P. Sabatini What are we trying to measure?
More informationT A B L E of C O N T E N T S
INFORMATION SECURITY AND CYBER LIABILITY RISK MANAGEMENT THE FIFTH ANNUAL SURVEY ON THE CURRENT STATE OF AND TRENDS IN INFORMATION SECURITY AND CYBER LIABILITY RISK MANAGEMENT Sponsored by October 2015
More informationPrudential Standard GOI 3 Risk Management and Internal Controls for Insurers
Prudential Standard GOI 3 Risk Management and Internal Controls for Insurers Objectives and Key Requirements of this Prudential Standard Effective risk management is fundamental to the prudent management
More informationI would like to thank the following organizations for sponsoring the course, which allows their employees/members to have the registration fee waived:
Presented by: Erike Young, MPPA, CSP, ARM 1 I would like to thank the following organizations for sponsoring the course, which allows their employees/members to have the registration fee waived: University
More informationCapital Allocation for Operational Risk Implementation Challenges for Bank Supervisors
Capital Allocation for Operational Risk Implementation Challenges for Bank Supervisors Eric Rosengren Senior Vice President Federal Reserve Bank of Boston Joint Operational Risk Conference November 15,
More informationCapital position and risk profile
Capital position and risk profile Incl. development of Property & Casualty claim reserves Dr. Andreas Märkert Chief Risk Officer, Managing Director of Group Risk Management 21st International Investors'
More informationUnderstanding cyber risk management vs uncertainty with confidence in 2017
Understanding cyber risk management vs uncertainty with confidence in 2017 "When I use a word,' Humpty Dumpty said in rather a scornful tone, 'it means just what I choose it to mean neither more nor less."
More informationA New Era In Information Security and Cyber Liability Risk Management. A Survey on Enterprise-wide Cyber Risk Management Practices.
SP ECIA L REPORT A New Era In Information Security and Cyber Liability Risk Management A Survey on Enterprise-wide Cyber Risk Management Practices October 2011 Sponsored by: A New Era In Information Security
More information