Differentiating Cyber Risk of Insurance Customers: The Insurance Company Perspective - Availability, Reliability, and Security in Information Systems
Conference Papers Year : 2016

Differentiating Cyber Risk of Insurance Customers: The Insurance Company Perspective

Abstract

As a basis for offering policy and setting tariffs, cyber-insurance carriers need to assess the cyber risk of companies. This paper explores the challenges insurance companies face in assessing cyber risk, based on literature and interviews with representatives from insurers. The interview subjects represent insurance companies offering cyber-insurance in a market where this is a new and unknown product. They have limited historical data, with few examples of incidents leading to payout. This lack of experience and data, together with the need for an efficient sales process, highly impacts their approach to risk assessment. Two options for improving the ability to perform thorough yet efficient assessments of cyber risk are explored in this paper: basing analysis on reusable sector-specific risk models, and including managed security service providers (MSSPs) in the value chain.
Fichier principal
Vignette du fichier
430962_1_En_12_Chapter.pdf (560.01 Ko) Télécharger le fichier
Origin Files produced by the author(s)
Loading...

Dates and versions

hal-01635023 , version 1 (14-11-2017)

Licence

Identifiers

Cite

Inger Anne Tøndel, Fredrik Seehusen, Erlend Andreas Gjære, Marie Moe. Differentiating Cyber Risk of Insurance Customers: The Insurance Company Perspective. International Conference on Availability, Reliability, and Security (CD-ARES), Aug 2016, Salzburg, Austria. pp.175-190, ⟨10.1007/978-3-319-45507-5_12⟩. ⟨hal-01635023⟩
105 View
308 Download

Altmetric

Share

More