Insurance buyers, and consequently their risk transfer partners, are struggling to measure cyber risk and are therefore largely in the dark about its financial impact, according to a new survey of insurers and brokers by Secure Systems Innovation Corporation (SSIC).
The survey also finds that the insurance industry needs to properly address non-affirmative cyber cover and that a series of catastrophic cyber events would radically alter the way in which insurers measure the risk profile of customers.
The survey reveals that 89% of 78 broking and insurance firms polled believe their customers could not adequately measure the impact of cyber extortion. The same percentage said their customers cannot adequately measure the cost of a data breach.
The survey also found that 87% of insurers and brokers believe buyers have inadequate systems to grasp the costs of intellectual property theft, while 83% of respondents said buyers could not quantify the cost of a cyberattack that causes business interruption.
Only 14% of respondents believe insurance buyers can adequately measure the cost of cyber property/casualty damage incidents. Just 10% said buyers are adequately measuring the likely costs of a potential data breach.
SSIC said the survey also reveals the urgent need for the UK insurance market to address non-affirmative or silent cyber risk, where perils including business interruption and data breach are not explicitly included or excluded from standard policies. Of the insurers and brokers surveyed, only 8% said their policy wording reflected the top five most understood cyber peril threats.
“If insurers do not map key cyber peril events to key cyber risk policy clauses – defining affirmatively what is explicitly covered or excluded – there is a real danger that vital cyber perils will not be covered,” SICC said.
Some 60% of survey respondents said lack of understanding about aggregated risk within cyber insurance hinders market growth. SICC said buyers are confused by cyber policies and do not understand policy coverage.
The survey found that the biggest driver for new cyber insurance sales comes from board-level executives, followed by demands of due diligence.
Full article on Commercial Risk (subscription required)
© Commercial Risk Europe
Key
Hover over the blue highlighted
text to view the acronym meaning
Hover
over these icons for more information
Comments:
No Comments for this Article