• Home
  • Applications
      • App Analytics
      • Blockchain
      • BPM
      • Collaboration
      • Configuration Management
      • CPQ
      • Container Management
      • Customer Experience Management
      • Cyber Security
      • Data Center
      • Data Platform
      • DMS
      • EAM
      • Enterprise Mobility
      • ERP
      • Enterprise Search
      • Enterprise Telecom
      • GIS
      • GRC
      • HR
      • IT Services
      • Legal
      • Machine Vision and Imaging
      • Marketing
      • Master Data Management
      • Portal Software
      • Predictive Analytics
      • Procurement
      • Project Management
      • Sales
      • Supply Chain
      • Unified Communications
      • Workflow
  • Verticals
      • Aerospace & Defense
      • Banking
      • Bioinformatics
      • BioTechnology
      • Construction
      • Contact Center
      • E-commerce
      • Education
      • Field Service
      • Food and Beverages
      • Government
      • Healthcare
      • Insurance
      • Life Sciences
      • Logistics
      • Manufacturing
      • Oil & Gas
      • Remote Monitoring
      • Retail
      • Robotics
      • Utilities
  • Technologies
      • Adobe
      • Amazon
      • Artificial Intelligence
      • Augmented Reality
      • Avaya
      • Big Data
      • Business Continuity
      • BI
      • Chatbot
      • Cloud
      • Content Delivery Network
      • DevOps
      • Drone Technology
      • e-Discovery
      • EA
      • Graphics Tech
      • IBM
      • IoT
      • Machine to Machine
      • Microsoft
      • Nintex
      • Oracle
      • Robotic Process Automation
      • Salesforce
      • SAP
      • Telematics
      • Testing
      • Video Surveillance
      • Wireless
  • partner conferences
  • Subscribe
  • Whitepapers
  • About us
  • Home
  • Cyber Security

What CIOs Need To Know About Cyber Liability Insurance

By Mike Desai, SVP Of Business And Corporate Development, Secureauth

content-image

Mike Desai, SVP Of Business And Corporate Development, Secureauth

As we are all aware, data breaches have reached epidemic proportions globally and most CIOs are saying it’s not a matter of 'if' we get breached but 'when'. Many of those breaches go unreported and that means that the victim has no idea a data breach occurred in the first place.

Large corporations bought cyber liability insurance to protect against things they claimed their software said it would do but couldn’t. Over time, that liability insurance evolved to cyber liability. Nowadays, when a data breach occurs, companies can lose millions of dollars in lost revenue and suffer insurmountable reputational harm to their global brand. To minimize the impact and protect against financial harm, more and more companies are purchasing cyber liability insurance.

However, industry experts are questioning what these policies really cover and if separate cyber insurance is even necessary. At a minimum, there are misconceptions on the topic. In some cases, buyers overestimate what activity is covered – such as thinking that it covers the entire breach lifecycle and expense, which is not the case. Perhaps most worrisome is that some CIOs think that insurance will allow for reduced spending and less robust security programs. Yet losses that are the result of poor security practices or failure to disclose issues are not covered.

Types of Cyber Liability Insurance:

• Errors and Omissions: It covers claims arising from errors in the performance of your services. This can include technology services, like software and consulting, or more traditional professional services like lawyers, doctors, architects, and engineers.

Cyber insurance is not about transferring the responsibility of securing your organization to an insurer


• Media Liability: These are advertising injury claims such as infringement of intellectual property, copyright/ trademark infringement, and libel and slander. Due to the presence of the internet in businesses today, technology companies have seen this coverage migrate from their general liability policy to being bundled into a media component in a cyber policy (or a separate media liability policy). Coverage here can extend to offline content as well.

• Network Security: A failure of network security can lead to many different exposures, including a consumer data breach, destruction of data, virus transmission, and cyber extortion. Network security coverage can also apply if you’re holding trade secrets or patent applications for a client, and that information is accessed due to a failure of your security.

• Privacy: Privacy doesn’t have to involve a network security failure. It can be a breach of physical records, such as files tossed in a dumpster, or human error such as a lost laptop, or sending a file full of customer account information to the wrong email address. Companies have also faced liability from returning a photocopier with a hard drive that contained unwiped customer tax records. A privacy breach can also include an action like wrongful collection of information.

While it has some very clear benefits, having cyber liability insurance is not an excuse to have poor cyber security solutions in place, just like having auto insurance doesn’t give you license to drive recklessly. Cyber insurance is not about transferring the responsibility of securing your organization to an insurer; CIOs must still be in compliance and have standard safeguards in place.

Regardless of your cyber liability insurance policy, remember these simple security practices:

• Write and put in place a data breach response plan in the event of a breach
• Conduct an external penetration test to highlight potential areas to address
• Keep all your systems and software patched up
• Implement strong access controls to reduce the use of stolen credentials
• Have security controls in place that will reduce your CLI premium and strengthen your security posture

As a CIO, you will want to demonstrate to your insurer that your organization did all that it could to protect itself and its assets effectively. Cyber liability insurance is no substitute for security best practices.

Founded in 2005 and based in Irvine, California, SecureAuth with over 540 customers worldwide, provides multi-factor authentication, single sign-on, adaptive authentication, and self-service tools.

CIO Speaks

Our Calling and Time

Vincent A. Marin, CIO,...

Information Security is More than Information Technology

Nick Coussoule, SVP & CIO,...

Internet of Things

Tom Basiliere, CIO, Provant

Centralizing Remote Management To Enhance ROI On Renewables

Matt Hall, CIO, ContourGlobal

New Editions

Vendors

  • Courage LLC: Engendering Seamless Oracle Cloud Migration

    Eric Wimer, Co Owner & President, Courage LLC

    FAST: Changing the Way Insurers Think about Technology

    John Gorman, COO and Tom Famularo, CEO, FAST

    Genius Avenue:  The Intelligent Insurtech Optimizers

    Sherry Hoskinson, CEO, Genius Avenue

    Imprezzio: Juggernaut of the Insurance Industry

    Russell Page, CEO, Imprezzio

    ACD: Cracking the Digital Code for Claims Management

    Ernie Bray, CEO, ACD

    edjuster: A Vanguard in the Insurtech Sphere

    Andy Williams, President and CEO, edjuster

  • Systems Consulting Services, Inc.: Streamlining Underwriting Processes

    Ken Wayman, President, Systems Consulting Services, Inc.

    Smart Communications: Delivering More Meaningful Customer Conversations

    Bob Dunfee, VP, Product Marketing, Smart Communications

    Simply Easier Payments: Simplifying Payment Processing in Insurance

    Duke Williams, President, Simply Easier Payments

    CHSI Technologies: Designing software for the next generation of insurance professionals

    Mike Ziethlow, UX Architect, CHSI Technologies

    Virtual Benefits Administrator: Real-Time Claims Payment

    Tom Witter, President, Virtual Benefits Administrator

    InsurIQ:  Driving Innovation through Digital Insurance

    Brian Harrigan, Founder and CEO, InsurIQ

Copyright © 2018 CIOApplications. All rights reserved. Registration on or use of this site constitutes acceptance of our Terms of Use and Privacy Policy.

follow on linkedinfollow on twitter
This content is copyright protected

However, if you would like to share the information in this article, you may use the link below:

https://www.cioapplications.com/cxoinsights/what-cios-need-to-know-about-cyber-liability-insurance-nid-480.html