• Cyber threats are becoming more and more damaging and costly, and it’s time to think again about getting coverage from cyber security failures.
  • Consider what you lose and how much you lose when looking at the coverage types.
  • Don’t stop upgrading and seeking help. As the world is getting more and more connected, types of threats change, and costs and coverage need to be adjusted.

Although most U.S. businesses are smaller than Sony, the weeks-long attack that occurred when the company attempted to release a somewhat-controversial movie is the type of threat that can happen to any business.

As further evidence, although the official blame went to a foreign country, many computer security analysts said that the attacks were something a private group of hackers would be able to execute.

The upshot for most businesses is that in addition to stringent cybersecurity-breach reporting laws in most states and costly fixes or changes that need to be made, they now also have a “bad actor” level of threat to guard against.

[Tweet “Business now also have a ‘bad actor’ level of threat to guard against.”]

Fortunately, in addition to creating an infrastructure that allows for information-sharing between companies, the insurance industry has stepped in to fill the gap with better definitions for products that provide coverage for companies that are potentially liable when things go wrong.

Types of coverage

Although it can seem confusing because there are a number of ways that your company can be exposed to different types of threats, the insurance industry has spent a lot of money to differentiate products so that they apply to specific situations and needs.

[Tweet “The insurance industry has spent a lot of money to differentiate products and meet your needs.”]

One popular type of coverage helps companies that are building software for other companies and consumers. It takes the standard errors and omissions coverage and extends it to include liability coverage for when a company inadvertently leaves a security gap in the product that they deliver.

Another type of coverage caters to companies that have shifted their applications and servers online. Whether they have front-facing web applications that their clients use regularly or they are primarily focused on serving the needs of their employees, a breach will be covered and they can use the policy to pay for forensics and other remedies in addition to addressing the potential liability that they may incur.

For companies that host customer data and applications, there is yet another class of coverage that allows for use-case scenarios that they might encounter, whether they are financial firms or hosting providers.

Insurance for cyber threats: Getting started

Because there are so many types of threats in today’s marketplace, spend some time building solid requirements that you can take out into the marketplace.

Knowing the specific threats, risks and costs associated with each will allow you to prioritize your must-have types of coverage.

[Tweet “Knowing the risks and costs will allow you to prioritize your must-have types of coverage.”]

Including insurance company input into your requirements-creation process will help give you a broader base of statistics to work from when calculating the expenses you can expect to encounter if you don’t have coverage.

In addition, look at what information the government offers regarding cyber c threats. Both the FBI and the White House regularly update opportunities for companies that would like more information on the current environment, or how to get involved with groups that can make your firm more secure.

One recent update from the FBI is typical of the type of executive summary that can help you get a better view of the macro environment and better gauge risk.

Looking at partners

Once you have your requirements set, it shouldn’t be hard to find policies to match your needs.

Keep in mind, however, that not all insurance companies have chosen to provide cyber-threat coverage. And among those companies that do, you will find that the categorization for cyber-threat policies is not all uniform.

[Tweet “Brokers: Do you have a list of scenarios that typify the threat you might encounter?”]

Just the same, most companies that do provide cyber-threat coverage either specialize in a niche or have the same comprehensive policy types that their competitors do — even if the nomenclature is different.

Here are some things to consider when you go to vet specific policies:

  • Does the company offer parallel coverage for types of cyber-threat insurance that you may want to add later?
  • Do you have a list of scenarios that typify the threat you might encounter so that you can work through it with your insurance partner to determine which policy meets your real-world needs?
  • How robust is the support infrastructure and how knowledgeable are the staff when it comes to being able to service claims?

Overall, in a changing environment it pays to cover potential cyber-threat liability. The smaller the risk that your company ends up having, the more likely you are to save your organization time and money.

Michael Rogers is the operations director of USInsuranceAgents.com

Email Michael Rogers. 

Show Comments Hide Comments
Sign up for Inman’s Morning Headlines
What you need to know to start your day with all the latest industry developments
By submitting your email address, you agree to receive marketing emails from Inman.
Success!
Thank you for subscribing to Morning Headlines.
Back to top
×
Log in
If you created your account with Google or Facebook
Don't have an account?
Forgot your password?
No Problem

Simply enter the email address you used to create your account and click "Reset Password". You will receive additional instructions via email.

Forgot your username? If so please contact customer support at (510) 658-9252

Password Reset Confirmation

Password Reset Instructions have been sent to

Subscribe to The Weekender
Get the week's leading headlines delivered straight to your inbox.
Top headlines from around the real estate industry. Breaking news as it happens.
15 stories covering tech, special reports, video and opinion.
Unique features from hacker profiles to portal watch and video interviews.
Unique features from hacker profiles to portal watch and video interviews.
It looks like you’re already a Select Member!
To subscribe to exclusive newsletters, visit your email preferences in the account settings.
Up-to-the-minute news and interviews in your inbox, ticket discounts for Inman events and more
1-Step CheckoutPay with a credit card
By continuing, you agree to Inman’s Terms of Use and Privacy Policy.

You will be charged . Your subscription will automatically renew for on . For more details on our payment terms and how to cancel, click here.

Interested in a group subscription?
Finish setting up your subscription
×