Cyber Insurance The role of analytics in supporting the acceptance of cyber exposure A presentation...

11
Cyber Insurance The role of analytics in supporting the acceptance of cyber exposure A presentation to C.A.S By David Ovenden Oct 2015 © 2015 Towers Watson. All rights reserved. Proprietary and Confidential. For Towers Watson and Towers Watson client use only.

TAGS:

Transcript of Cyber Insurance The role of analytics in supporting the acceptance of cyber exposure A presentation...

Page 1: Cyber Insurance The role of analytics in supporting the acceptance of cyber exposure A presentation to C.A.S By David Ovenden Oct 2015 © 2015 Towers Watson.

Cyber Insurance The role of analytics in supporting the acceptance of cyber exposure

A presentation to C.A.SBy David Ovenden

Oct 2015

© 2015 Towers Watson. All rights reserved. Proprietary and Confidential. For Towers Watson and Towers Watson client use only.

Page 2: Cyber Insurance The role of analytics in supporting the acceptance of cyber exposure A presentation to C.A.S By David Ovenden Oct 2015 © 2015 Towers Watson.

towerswatson.com

2

Agenda

Introduction

Background

Coverage types

Actors

Vectors

Why is this a difficult class of business

The anatomy of a hack

How can analytics support

© 2015 Towers Watson. All rights reserved. Proprietary and Confidential. For Towers Watson and Towers Watson client use only.

Page 3: Cyber Insurance The role of analytics in supporting the acceptance of cyber exposure A presentation to C.A.S By David Ovenden Oct 2015 © 2015 Towers Watson.

towerswatson.com

3

Background

A few names that have had security issues recently

Hacking is becoming an increasingly mainstream occurrence

The cost of data breaches is escalating

The impact can be catastrophic State actors are undoubtedly

involved The subject matter is not well

understood within the insurance industry

Our lives and business interactions are digital

Insurance solutions lag behind the issue

© 2015 Towers Watson. All rights reserved. Proprietary and Confidential. For Towers Watson and Towers Watson client use only.

Source: Information is beautiful

Page 4: Cyber Insurance The role of analytics in supporting the acceptance of cyber exposure A presentation to C.A.S By David Ovenden Oct 2015 © 2015 Towers Watson.

towerswatson.com

4

Some UK Government research

© 2015 Towers Watson. All rights reserved. Proprietary and Confidential. For Towers Watson and Towers Watson client use only.

90%74%

of large organisations

of small organisations

Had a security breach

39%27%

of large organisations

of small organisations

Believe they have insurance that would cover a breach

69%38%

of large organisations

of small organisations

Were attacked by an unauthorised outsider last year

30%16%

of large organisations

of small organisations

Were hit by a DoS attacks in the last year

Year on year increase

Year on year decrease

Year on year increase

Year on year decrease

Source: UK Government Report on Information Security

Page 5: Cyber Insurance The role of analytics in supporting the acceptance of cyber exposure A presentation to C.A.S By David Ovenden Oct 2015 © 2015 Towers Watson.

towerswatson.com

5

Actors and Vectors

Vandals

Thrill Seekers

Show offs

Thieves

Organised crime

Hacktivist

Industrial espionage

State craft

The unaware

© 2015 Towers Watson. All rights reserved. Proprietary and Confidential. For Towers Watson and Towers Watson client use only.

buster

thomas

tigger

robert

soccer

batman

test

pass

killer

hockey

george

charlie

andrew

michelle

love

sunshine

jessica

6969

pepper

daniel

access

123456789

654321

joshua

maggie

starwars

silver

Direct Hacks

Mass Attack

Infection / Virus

DDOs

Social Engineering

Inside jobs

Accidents

Poor practices

Physical peril

Page 6: Cyber Insurance The role of analytics in supporting the acceptance of cyber exposure A presentation to C.A.S By David Ovenden Oct 2015 © 2015 Towers Watson.

towerswatson.com

6

Coverage types

First Party Loss, damage or corruption of data Business interruption following a loss Costs, fines and penalties Reconstruction of data

Third Party Professional indemnity Libel General liability Breach of privacy D&O

password

123456

12345678

1234

qwerty

12345

dragon

pussy

baseball

football

letmein

monkey

696969

abc123

mustang

michael

shadow

master

jennifer

111111

2000

jordan

superman

harley

1234567

hunter

trustno1

© 2015 Towers Watson. All rights reserved. Proprietary and Confidential. For Towers Watson and Towers Watson client use only.

Underlying Exclusion

Specialist Coverage

Most products exclude “cyber

cat”

Comprehensive Data exclusions

Page 7: Cyber Insurance The role of analytics in supporting the acceptance of cyber exposure A presentation to C.A.S By David Ovenden Oct 2015 © 2015 Towers Watson.

towerswatson.com

7

Why is this so difficult?

First Party

Volume of activity

Potential aggregations

Lack of knowledge

Difficult claims settlement

Lack of partnerships

Limited pull or push

Limits required

Better opportunities?

© 2015 Towers Watson. All rights reserved. Proprietary and Confidential. For Towers Watson and Towers Watson client use only.

Third Party

Understanding

Difficulty policing

Poor history

Limits required

Emerging legal

environment

Lack of data

amanda

orange

biteme

freedom

computer

sexy

thunder

nicole

ginger

heather

hammer

summer

corvette

taylor

austin

1111

merlin

matthew

121212

golfer

cheese

princess

martin

chelsea

patrick

richard

Page 8: Cyber Insurance The role of analytics in supporting the acceptance of cyber exposure A presentation to C.A.S By David Ovenden Oct 2015 © 2015 Towers Watson.

towerswatson.com

8

Realistic analytical support

Understanding the data resources available

Setting the Data strategy

Pricing with limited data

Modelling appetite and disaster scenarios (EMLs)

Catastrophe potential

Decision support

Portfolio management analytics

© 2015 Towers Watson. All rights reserved. Proprietary and Confidential. For Towers Watson and Towers Watson client use only.

asdfgh

sparky

cowboy

camaro

anthony

matrix

falcon

iloveyou

bailey

guitar

jackson

purple

scooter

phoenix

aaaaaa

morgan

tigers

porsche

mickey

maverick

cookie

nascar

peanut

justin

131313

money

boomer

IT SecurityExpertise

AnalyticalExpertise

Underwriting & Claims Expertise

Page 9: Cyber Insurance The role of analytics in supporting the acceptance of cyber exposure A presentation to C.A.S By David Ovenden Oct 2015 © 2015 Towers Watson.

towerswatson.com

9

Building IP around Cyber within your organisation

Bring together a range of external data sources relevant for your target segment, potentially including breach data segmented by: Underlying technology Industry sector Suppliers Size / scale Sensitivity of the data Policy limits selected Credit score Cross reference physical security

Automation v Security Surveys Unless you have big data (unstructured data) expertise collect as much

objective structured data as possible from your IT partners Work closely with your underwriters to ensure analytical rigour If you have a portfolio of this risk, make sure it is actively managed

© 2015 Towers Watson. All rights reserved. Proprietary and Confidential. For Towers Watson and Towers Watson client use only.

Page 10: Cyber Insurance The role of analytics in supporting the acceptance of cyber exposure A presentation to C.A.S By David Ovenden Oct 2015 © 2015 Towers Watson.

towerswatson.com

10

An example commercial analytics environment

© 2015 Towers Watson. All rights reserved. Proprietary and Confidential. For Towers Watson and Towers Watson client use only.

UW and Pricing

Analytics

Radar

Quote engine(s)

Performance data

Client data

Broker data

External Financial Data

Outcomes

Decision support

Interactive case level decision support

Interactive Product

dashboard

Interactive Regional

dashboard

Interactive Broker

dashboard

Augmented renewal lists

Market data (CMA)

Integrated Commercialdata environment

Portfolio Analytics

Industrialised technical reporting

Claims MI

Policy MI

External Cyber data sources

Page 11: Cyber Insurance The role of analytics in supporting the acceptance of cyber exposure A presentation to C.A.S By David Ovenden Oct 2015 © 2015 Towers Watson.

towerswatson.com

11© 2015 Towers Watson. All rights reserved. Proprietary and Confidential. For Towers Watson and Towers Watson client use only.

Questions?


C.H.I.L.D Foundation Turning the Brain on for Reading Dr. Valerie Scaramella-Nowinski Drina Madden M.A., C.A.S.

C.H.I.L.D Foundation Turning the Brain on for Reading Dr. Valerie Scaramella-Nowinski Drina Madden M.A., C.A.S.

C.A.S. Sportmanagement- Programm (HSG) · 2 3 Inhalt 5 Vorwort 6 Faculty 7 Ihr Nutzen 8 Bisherige Referenten 9 C.A.S. 2015 & 2016 10 Impressionen C.A.S. 2015 12 Impressionen C.A.S.

C.A.S. Sportmanagement- Programm (HSG) · 2 3 Inhalt 5 Vorwort 6 Faculty 7 Ihr Nutzen 8 Bisherige Referenten 9 C.A.S. 2015 & 2016 10 Impressionen C.A.S. 2015 12 Impressionen C.A.S.

Cyber, cyber everywhere: Is your cyber strategy everywhere ...

Cyber, cyber everywhere: Is your cyber strategy everywhere ...

Cyber Crime: Cyber-Bullying

Cyber Crime: Cyber-Bullying

Cyber Security, Cyber Intelligence & Cyber Investigation

Cyber Security, Cyber Intelligence & Cyber Investigation

C/- Craven Ovenden Town Planning PO Box 2088 MILTON BC QLD ...€¦ · OUR REF: DA-2011-249 2 December 2011 Peter T McDougall C/- Craven Ovenden Town Planning PO Box 2088 MILTON BC

C/- Craven Ovenden Town Planning PO Box 2088 MILTON BC QLD ...€¦ · OUR REF: DA-2011-249 2 December 2011 Peter T McDougall C/- Craven Ovenden Town Planning PO Box 2088 MILTON BC

Steve Ovenden - Conoco Phillips

Steve Ovenden - Conoco Phillips

KMBT C654-20131205085425 - Chiropractic Practice CoachingIntroduction The Chiropractic Assistants (C.A.s) and Associate Doctors are an extension of Doctor Lloyd. Your role is critical

KMBT C654-20131205085425 - Chiropractic Practice CoachingIntroduction The Chiropractic Assistants (C.A.s) and Associate Doctors are an extension of Doctor Lloyd. Your role is critical

Hollywood Orchestra Virtual Instrumentmedia.soundsonline.com/manuals/EW-Hollywood-Orchestra...Sound Engineer: Shawn Murphy Shawn Murphy is an Academy Award, C.A.S. (Cinema Audio Society),

Hollywood Orchestra Virtual Instrumentmedia.soundsonline.com/manuals/EW-Hollywood-Orchestra...Sound Engineer: Shawn Murphy Shawn Murphy is an Academy Award, C.A.S. (Cinema Audio Society),

BREVITY C.A.S. - server.3rd-wing.netserver.3rd-wing.net/.../Wiki_Documentation/375007_BrevityCAS_1_0_1.pdf · ... (FM 309.32 MCRP 316.6A NTTP 309.2 AFTTP(I) 32.6) ... the JFIRE guide.

BREVITY C.A.S. - server.3rd-wing.netserver.3rd-wing.net/.../Wiki_Documentation/375007_BrevityCAS_1_0_1.pdf · ... (FM 309.32 MCRP 316.6A NTTP 309.2 AFTTP(I) 32.6) ... the JFIRE guide.

Material Safety Data Sheet - Carquestweblink.carquest.com/msds/MMM/MMM 06080.pdf · specific use: removal of imperfections from painted surface section 2: ingredients ingredient c.a.s.

Material Safety Data Sheet - Carquestweblink.carquest.com/msds/MMM/MMM 06080.pdf · specific use: removal of imperfections from painted surface section 2: ingredients ingredient c.a.s.

lawsocietyontario.azureedge.net › media › lso › ... · Gary Gerard Ouellette Hedley David Ovenden Geoffrey Richard Lincoln Pacey Victor Stephen Paisley Victor Louis Palermo

lawsocietyontario.azureedge.net › media › lso › ... · Gary Gerard Ouellette Hedley David Ovenden Geoffrey Richard Lincoln Pacey Victor Stephen Paisley Victor Louis Palermo

Cyber-Conflict, Cyber-Crime, and Cyber-Espionage

Cyber-Conflict, Cyber-Crime, and Cyber-Espionage

Corriente alterna senoidal C.A.S. - jmas.webs.upv.es Fisica/Olimpiadas. CA.pdf · Resonancia en circuitos RLC serie. Nikkola Tesla 1856-1943 Corriente alterna senoidal C.A.S. Generación

Corriente alterna senoidal C.A.S. - jmas.webs.upv.es Fisica/Olimpiadas. CA.pdf · Resonancia en circuitos RLC serie. Nikkola Tesla 1856-1943 Corriente alterna senoidal C.A.S. Generación

Presentation1 · Antibiogram Antibiogram Disk Diffusion Testing The Test Summary 1. Select colonies 2. Prepare inoculum suspension o Antibiograph C.A.S A.S Antibiograph for automated

Presentation1 · Antibiogram Antibiogram Disk Diffusion Testing The Test Summary 1. Select colonies 2. Prepare inoculum suspension o Antibiograph C.A.S A.S Antibiograph for automated

Cyber-Crime, Cyber- Warfare, Cyber- Conflict€¦ · 270k quiz-takers -> 87M friends of quiz-takers ... What next? Prepare for Stormy weather: Cyber-Crime, Cyber-War, Cyber-Conflict

Cyber-Crime, Cyber- Warfare, Cyber- Conflict€¦ · 270k quiz-takers -> 87M friends of quiz-takers ... What next? Prepare for Stormy weather: Cyber-Crime, Cyber-War, Cyber-Conflict

OCLC’s iCAS Service as a Tool for Collection Managers Richard Ovenden Director of Collections, Edinburgh University Library.

OCLC’s iCAS Service as a Tool for Collection Managers Richard Ovenden Director of Collections, Edinburgh University Library.

ppt -Cyber Crime, Cyber Security and Cyber Laws

ppt -Cyber Crime, Cyber Security and Cyber Laws

Cyber Crimes & Cyber War

Cyber Crimes & Cyber War

INTERNET SAFETY Elementary Age Children Catherine Horn, M.A., C.A.S. Cos Cob School Psychologist.

INTERNET SAFETY Elementary Age Children Catherine Horn, M.A., C.A.S. Cos Cob School Psychologist.