Brokers in the cyber insurance industry are being urged to shift their focus from simply transferring risk to building true cyber resilience for their clients. Margaux Weinraub, the cyber practice leader at Graham Company, emphasized that organizations often see cyber insurance as just a safety net rather than a proactive tool for preparedness.
Weinraub pointed out that many businesses are missing out on the valuable resources available through their cyber policies. These resources include pre-breach services such as forensics, legal support, compliance assistance, and access to vetted vendors. She stressed that the value of a cyber policy extends beyond just responding to incidents.
One major concern today is the systemic risks that come from relying on external vendors. Weinraub highlighted the vulnerability this creates, as a breach affecting one vendor can have widespread repercussions for many businesses that depend on them. She noted that recent high-profile outages in 2024, such as those involving CrowdStrike and Change Healthcare, serve as stark reminders of this risk. Companies need to have a solid response plan for when their key service providers experience issues.
Despite the increase in cyber claims, the industry is still grappling with a lack of data to understand systemic risks fully. Cyber insurance is relatively young, having been around for less than 30 years, meaning there is limited historical data to guide effective modeling of risks. However, Weinraub sees this as an opportunity for collaboration within the industry, allowing companies to share data and improve their decision-making processes.
On the positive side, the market is expanding, with new types of risks being considered, including supply chain threats and even bodily injury. Weinraub noted that the underwriting process is evolving, with traditional insurers becoming more creative in their policy offerings.
While some areas have seen rate reductions, Weinraub cautioned against complacency. Policies written today differ significantly from those of previous years due to the fast-paced changes in the cyber landscape. New exposures are emerging, such as risks associated with biometric data, AI-driven attacks, and evolving definitions of war exclusions in insurance policies.
The COVID-19 pandemic has accelerated these changes, as businesses have increasingly relied on digital solutions and cloud services. This shift has resulted in more vendors and digital assets, creating additional layers of risk. In the event of a breach, speed is crucial. Weinraub emphasized that the first 24 hours are vital for an effective response.
Brokers play a critical role in this process. They need to be proactive, assisting clients not only with policy arrangements but also with incident response strategies. This includes understanding how to bridge gaps between insurers, vendors, and legal teams, and ensuring that information sharing keeps pace with evolving threats.
Weinraub highlighted the importance of real-time collaboration among various stakeholders, including insurers, government agencies, and forensic firms. This level of cooperation is essential for creating a more resilient cybersecurity environment. She pointed to the industry’s response to sophisticated threats, such as those posed by the threat group Scattered Spider, as a positive example of improved coordination.
In conclusion, as organizations face increasing complexity and risk, the need for effective cyber insurance and resilience strategies has never been more critical. Brokers must step up as advocates for their clients, ensuring they are well-prepared for any cyber incidents that may arise.