• Skip to main content
  • Skip to footer

Commonwealth Sentinel

Cyber Security for local government, non-profits and small business

MENUMENU
  • Home
  • About Us
    • Sheri Donahue
    • Leo Haggerty
    • Careers
  • Services
    • Vulnerability and Threat Evaluation
    • Transformation Management
    • CISO Management Services
    • Incident Response Management
  • News
  • Blog
  • FAQs
  • Contact Us

commonsent / May 27, 2021

The Ins and Outs of Cyber Insurance

Many security experts recommend that organizations obtain cyber insurance. However, these same organizations often do not fully understand what it is or how it works.

Just like health insurance cannot keep you from getting sick or car insurance keeps you from having an accident, cyber insurance cannot keep you from becoming the victim of a cyber attack.  But also like health insurance and car insurance that provide financial assistance after an illness or accident, cyber insurance can help to defray the costs associated with recovering from a cyber attack.

The most common attacks for which claims are made include ransomware, business email compromise and fund-transfer fraud.

What is very important to understand is that having cyber insurance does not mean you have transferred the risk or responsibility to your insurer nor does it mean that you do not need cyber security. Ideally, you should have both. (At a minimum, you should have cyber security in place. Cyber insurance is optional.)

Cyber insurance will neither resolve your cyber security issues nor will it prevent an attack.  It will, however, cover the immediate costs incurred after your organization becomes a victim of a cyber attack.  These can include data recovery, forensics, legal representation, customer compensations, etc.  Some policies may cover the cost of ransom but paying the ransom is highly discouraged.

The damages that are not – and cannot – be covered include the cost to an organization’s reputation and future loss of business as a result. As we have noted previously, 60% of small businesses that are hit by a cyber attack go out of business within 6 months. No policy can prevent that.

Generally the cost of a policy will depend on the size/type of organization, annual revenue and the security of the network. That is, if your organization has ongoing threat assessments, vulnerability scans, network analyses, endpoint protection, and security awareness training, just to name a few, then your policy and coverage will be much better than for an organization that has no firewall, no policies in place, no security training, etc. Just like a health insurance policy that will cost more for a stunt man who smokes, has high blood pressure and bungee jumps as a hobby while it will cost less for someone who has an office job, has a clean bill of health, doesn’t smoke, and reads for a hobby.

Upon application, most insurance providers will require that your organization have some level of cyber security in place. That is, on-going cyber security, not just a firewall and anti-virus installed that is never updated.

Recently, many cyber insurance companies are requiring that the insured organization utilize multifactor login authentication for all employees and users of their networks. As cyber attacks become more sophisticated, the level of expectation from the insurance providers increases in order to help keep you safe…that is, safe from cyber attacks and filing a claim.

Filed Under: Blog

Footer

CONTACT US

COMMONWEALTH SENTINEL

1230 US Highway 127 S
Suite #5
Frankfort KY 40601
(502) 320-9885

EMAIL US

ABOUT US

Cyber security consulting for local governments, non-profit organizations, and small businesses facing the threats of the cyber world.  At Commonwealth Sentinel, we are passionate about helping people be cyber-safe!

FOLLOW US

  • Email
  • Facebook
  • LinkedIn
  • Phone
  • Twitter
  • YouTube

Copyright © 2023 Commonwealth Sentinel

We use cookies on our website to give you the most relevant experience by remembering your preferences and repeat visits. By clicking “Accept”, you consent to the use of ALL the cookies.
Cookie settingsACCEPT
Privacy & Cookies Policy

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these cookies, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may have an effect on your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.
Non-necessary
Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.
SAVE & ACCEPT