How protected are you?
UK firms are increasingly protecting themselves with cybersecurity risk insurance, but nearly a third of firms have not taken out insurance yet. A new survey conducted by research and consultancy firm Ovum for Silicon Valley analytics firm FICO reveals that even among those that have insurance, only 28 per cent said they have cybersecurity insurance that covers all risks.
- 31 per cent of UK executives surveyed say their firm has no cybersecurity insurance, compared to 40 per cent in other countries surveyed
- Only 28 per cent of UK firms surveyed have cybersecurity insurance that covers all risks
- 69 per cent of respondents say insurers should do more to explain how they price risk
- Ovum conducted telephone surveys for FICO of security executives at 350 companies in the UK and other countries
FICO will host a Tweet Chat on the cybersecurity survey with Ovum tomorrowat 16:00 BST. Individuals are encouraged to participate using #cybertrends.
Even though the majority of firms surveyed have cybersecurity insurance, most say that the risk assessment process insurers use needs improvement. Just 31 per cent of respondents think their premiums reflect an accurate assessment of their risk. Nearly as many, 29 per cent, said they don’t believe the assessment accurately reflects their risk, and 11 per cent said they don’t know how their insurance is priced.
Steve Hadaway, FICO general manager for Europe, the Middle East and Africa, said: “The UK will soon be subject to General Data Protection Regulation (GDPR), which introduces higher fines in cases of data breach.”
“Even if attacks don’t increase in volume, firms could end up paying more, which makes having comprehensive insurance more important. At the same time, companies have a right to expect that they will pay less if their protection is better. The onus is on the cybersecurity insurance industry to make sure insurance rates are fairly set for each individual firm, based on a sound analysis of its risk.”
Ovum conducted the survey for FICO through telephone interviews with 350 CXOs and senior security officers based in the US, Canada, the UK and the Nordics in March and April 2017. Respondents represented firms in financial services, telecommunications, retail, ecommerce and media service providers.