Cyber Insurance: Changing Dynamics in a Maturing Market

Jean-Christophe Gaillard Jean-Christophe Gaillard
October 5, 2020 Big Data, Cloud & DevOps

Skills and data are building up, leading to less favourable conditions for negligent buyers

Our recent review of the Cyber Insurance market place, in collaboration with Cyber Solace, highlights a number of key elements.

The market has changed considerably since our first analysis in 2016, driven by non-stop cyber-attacks affecting all firms – large and small – and in particular by the spectacular rise in ransomware-related incidents, from Wannacry and NotPetya in 2017 to more recent Maze and Sodinokibi outbreaks.

The introduction of tighter privacy regulations such as GDPR in 2018 or CCPA has also contributed to the development of risk awareness amongst buyers, around sub-standard cyber security practices where personal data is concerned.

Generally, most actors across the cyber insurance sector have built up skills over the past few years – something which was clearly deficient back in 2016. Data – which was clearly lacking back in 2016 – is also starting to accumulate in meaningful ways, as the Cyentia Institute and Advisen have comprehensively highlighted in their last Information Risk Insight Study.

This is allowing new dynamics to emerge between buyers, brokers, agents and insurers.

A market less and less favourable to negligent buyers

Many buyers – in particular amongst small firms – are still looking at cyber insurance as some form of “silver bullet”: A way of transferring cyber risk in full without having to change existing practices.

The market is becoming less and less favourable to those negligent buyers.

In the past, insurers might have paid back some of their claims by fear of killing the market. They are less and less driven to do so: As skills increase and data-driven models give deeper insights, buyers have to expect to be more and more challenged around their cyber robustness.

Cyber insurance, as we were foreseeing to some extent as far back as 2015, could be in the process of becoming an incentive mechanism driving adherence to security good practices in order to ensure pay-backs by insurers, in the face of cyber-attacks which have now become plainly a matter of “when”, not “if”.

The threat of “silent cyber”

However, over the past few years, driven by the skills imbalance within the market which we highlighted back in 2016, a number of legacy practices have created a potential storm around the cyber insurance market at large, which the current COVID-19 crisis can only aggravate.

Cyber insurance was rarely sold as a standalone policy. Many cyber insurance policies have been effectively “buried” within other policies, and their diversity in terms of language, coverage or exclusions remains staggering.

This “silent cyber” problem is turning into a nightmare for many insurers and re-insurers who are finding it increasingly impossible to estimate accurately the amount of cyber risk they actually carry, once again in the face of non-stop cyber-attacks, and now with the COVID-19 crisis aggravating the situation and also punching a multi-billion hole in their pockets through business interruptions payments.

The extent of this could be very significant and may end up creating a systemic risk event, over which the financial regulators would have to intervene.

Overall, even if it continues to be shaken by regulatory challenges or court cases (many high profile lawsuits are still unresolved), the cyber insurance market is emerging out of immaturity, insurers are effectively paying back, and cyber insurance is becoming a strong measure for CFOs and CEOs to consider in their arsenal of protective measures against cyber threats, as long as they remain otherwise committed to adherence to cyber security good practices.

  • Experfy Insights

    Top articles, research, podcasts, webinars and more delivered to you monthly.

  • Jean-Christophe Gaillard

    Tags
    Cyber InsuranceCyber SecurityCyber Threats
    Leave a Comment
    Next Post
    Data-Driven? Think again

    Data-Driven? Think again

    Leave a Reply Cancel reply

    Your email address will not be published. Required fields are marked *

    More in Big Data, Cloud & DevOps
    Big Data, Cloud & DevOps
    Cognitive Load Of Being On Call: 6 Tips To Address It

    If you’ve ever been on call, you’ve probably experienced the pain of being woken up at 4 a.m., unactionable alerts, alerts going to the wrong team, and other unfortunate events. But, there’s an aspect of being on call that is less talked about, but even more ubiquitous – the cognitive load. “Cognitive load” has perhaps

    5 MINUTES READ Continue Reading »
    Big Data, Cloud & DevOps
    How To Refine 360 Customer View With Next Generation Data Matching

    Knowing your customer in the digital age Want to know more about your customers? About their demographics, personal choices, and preferable buying journey? Who do you think is the best source for such insights? You’re right. The customer. But, in a fast-paced world, it is almost impossible to extract all relevant information about a customer

    4 MINUTES READ Continue Reading »
    Big Data, Cloud & DevOps
    3 Ways Businesses Can Use Cloud Computing To The Fullest

    Cloud computing is the anytime, anywhere delivery of IT services like compute, storage, networking, and application software over the internet to end-users. The underlying physical resources, as well as processes, are masked to the end-user, who accesses only the files and apps they want. Companies (usually) pay for only the cloud computing services they use,

    7 MINUTES READ Continue Reading »

    About Us

    Incubated in Harvard Innovation Lab, Experfy specializes in pipelining and deploying the world's best AI and engineering talent at breakneck speed, with exceptional focus on quality and compliance. Enterprises and governments also leverage our award-winning SaaS platform to build their own customized future of work solutions such as talent clouds.

    Join Us At

    Contact Us

    1700 West Park Drive, Suite 190
    Westborough, MA 01581

    Email: support@experfy.com

    Toll Free: (844) EXPERFY or
    (844) 397-3739

    © 2023, Experfy Inc. All rights reserved.