Harvard Business Review highlights the Cyber Risk Challenge
A report sponsored by Zurich Insurance Group and FERMA from Harvard Business Review Analytic Services is highlighting the challenge facing business as it faces up to the task of securing data and meeting the increasing demands of laws, regulations and stakeholders.
More than 75% of participants said information security and privacy are now more significant concerns than three years ago.
The sheer number of ways in which data can be lost, stolen, or misappropriated illustrates the prevalence of the threat. More than one in four survey respondents mentioned each of the following as being among the most serious information security concerns for their organizations: malware and other viruses (72.4 percent), administrative errors (48 percent), incidents caused by data providers (34.2 percent), malicious employee activity (30.9 percent), attacks on Web applications (30.3 percent), theft or loss of mobile devices (28.3 percent), and internal hackers (25.7 percent).
Awareness and attention to cyber risk may not be penetrating fast enough to all levels of the organization to keep the risk of such events under control. Only 36.3 percent of survey respondents said their organization conducts information security and risk training at the enterprise level for all employees, and less than half said it occurs either annually or biannually. The lag was even more pronounced in the public sector, where only 9 percent of respondents said their organization was providing training at the enterprise level and only one in three were doing so annually or biannually.
The report also stresses the need for a complete approach connecting stakeholders, processes and the protection available with cyber risk insurance. Jerome Gossé, financial lines underwriter at Zurich Global Corporate said “Insurance is the last step in the process of addressing cyber risks - its the last line of defense after organizational and technological processes and tools are in place."
The problem, Gossé noted, is that traditional policies, like commercial general liability insurance, do not cover these risks and generally cannot be extended to do so.
To read the full report please click the link below
You might also like ...
Cybercrime is a growing threat in a world where most individuals and organisations rely upon the Internet and connected technologies, opening themselves up to the risk of attack from global criminals from anywhere in the world. Against a background of rising incidents of data losses and theft, pharming, phishing, computer viruses and hacking, this PWC survey scrutinised the significance and impact of this type of economic crime and the way in which it affects organisations worldwide.
Whilst cybercrime isn’t that new for the FS sector, it is a particularly prevalent issue for FS respondents in comparison to other industry sectors and one that puts its customers, brand and reputation at significant risk. Regulators are increasingly viewing cybercrime as a key area of focus. FS organisations are expected to have appropriate systems and controls in place to fight the growing threat of cybercrime. For example, in the UK the Financial Services Authority (“FSA”) has included “Data Security” within its top economic crime risks for some time.