What Are The Benefits Of Cyber Insurance?

PC Pro|April 2019

What Are The Benefits Of Cyber Insurance?

Businesses buy fire, theft and property insurance, so why the reluctance to buy cyber insurance? Nik Rawlinson reveals all.

There’s more cyber-enabled crime than all other crimes put together,” said Duncan Sutcliffe, director of Sutcliffe & Co Insurance Brokers. “Yet here we are insuring against fire, flood, burglaries, while only 5% of businesses are buying cyber insurance.”

Sutcliffe admits that it’s a hard sell. Cyber insurance doesn’t cover anything tangible, such as a building, car, or office full of computers, yet the potential for damage caused by a data breach, leak or unauthorised server penetration can be far more serious than the loss of hardware.

“Cyber is an extension to a lot of traditional insurance policies,” said James Brady, head of cyber for specialist insurance provider Hiscox, who has seen increased interest in policies since the introduction of GDPR. He acknowledges that physically focused insurance – against fire or theft of property – is well understood, “yet you’re statistically more likely to make a cyber claim than have a fire… employees are very susceptible to social engineering, phishing attempts, and so on, and that could lead to a claim.”

Buying cyber insurance

Every policy is tailored to the business taking it out, and although the questions asked at the outset will sometimes be determined by turnover (Hiscox is launching a new product in early March aimed at businesses with annual earnings of less than £1 million), the kind of data they handle and the business model also play a part.

The policy price “depends on revenue, industry, number of employees and so on,” said Brady, “but they’ll certainly get a more favourable premium if they have the relevant IT security accreditations – and, from a cultural perspective, if they appreciate the exposure that cyber is these days and they’re doing everything within their means to mitigate the more employee negligence-driven errors.”

Cyber Essentials Accreditation, ISO 27001 certification and ongoing staff training can help reduce premiums precisely because they also help reduce risk.

articleRead

You can read upto 3 premium stories before you subscribe to Magzter GOLD

Log-in, if you are already a subscriber

GoldLogo

Get unlimited access to thousands of curated premium stories and 5,000+ magazines

READ THE ENTIRE ISSUE

April 2019