Cyber Insurance Is Unsustainable On Its Current Path

The cyber insurance and reinsurance market is currently unsustainable if it continues on its current course, but better use of data and more informed regulation may offer a solution. 

This is according to Ben Beeson, Founding Member and Head of Insurance at Arceo, a risk analytics provider for the cyber re/insurance market, who spoke about where the sector might be headed.

Speaking to industry journal ReInsurance News  Beeson explained “The market has not grown as quickly as it should have,”“The best estimates are that the size of the market is roughly $4.5 billion gross written premium today. It should be much bigger than that, if you think about the size of the risk and how it impacts everybody ... and yet, because it’s arguably perceived to be the biggest opportunity in the insurance industry, there’s still more capital entering the market looking for growth. And they’re not all finding it.”

Compounding the problem is a lack of premium outside of the US market, and the fact that the top five carriers control somewhere in the region of 40-50% of the market, Besson noted.

“So think about that in terms of the other 100 players trying to go after the rest of the premium there,” he continued. “That is a problem. It’s a problem because it doesn’t lead to better underwriting, to better evaluation of risk because people are chasing market share, chasing rate. We’ve got to correct that.”

Regulation will likely play a key role in curtailing this kind of behaviour, by providing incentives for the industry to fully address the cyber risks the cyber risks it is taking on. The recent announcement from the UK’s Prudential Regulation Authority (PRA), for example, will require Lloyd’s syndicates and the wider UK re/insurance industry to more effectively manage their silent cyber risks by 2020.

“I think that’s very welcome and not before time,” said Beeson. “Silent Cyber is the biggest issue right now and regulators are going to drive it right out into the open.”

However, the belief at Arceo is that regulation needs to be combined with new technologies and data capabilities to promote a more robust and sustainable cyber market.

“The insurance market, those involved in cyber, has long complained that there’s not enough data available to accurately price and evaluate cyber risks... Our belief is that’s not correct, the data is there. It’s just you’ve got to get it, you’ve got to make sense of it, and then you’ve got to deliver it in a way that is usable depending on who wants to use it. The challenge is how to deliver that data in a market which still today is over-capitalised and very competitive with rates dropping.” Beeson explained.

“By getting the right data in the right hands, the industry can help raise corporate security standards, and at the same time, make better informed underwriting decisions, meaning much greater market sustainability.”

Arceo aims to facilitate this process by acting as bridge between the re/insurance and cyber security industries, which it believes are often speaking different ‘languages’ in their approaches to understanding risk and exposures.

Beeson concluded that the sustainability of the cyber re/insurance market’s will not be truly tested until a major ‘cyber hurricane’ occurs, which would involve a single unforeseen event causing multiple losses across carriers’ portfolios.

Reinsurance

You Might Also Read:

Wanted: Clarity About Cyber Insurance Cover:

 

« The WannaCry Hangover
Only 31% Of Employees Get Annual Cyber Security Training »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

Watch this webinar to hear security experts from Amazon Web Services (AWS) and SANS break down the myths and realities of what an NGFW is, how to use one, and what it can do for your security posture.

Perimeter 81 / How to Select the Right ZTNA Solution

Perimeter 81 / How to Select the Right ZTNA Solution

Gartner insights into How to Select the Right ZTNA offering. Download this FREE report for a limited time only.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

SiteLock

SiteLock

SiteLock is a global leader in website security solutions. We provide affordable, cybersecurity software solutions designed to allow small to midsize businesses to operate without fear of an attack.

Truth Technologies Inc (TTI)

Truth Technologies Inc (TTI)

TTI is a premier provider of worldwide anti-money laundering, anti-fraud, customer identification, and compliance products and services.

Aqua Security Software

Aqua Security Software

Aqua Security helps enterprises secure their cloud native applications from development to production, whether they run using containers, serverless, or virtual machines.

Jeffer Mangels Butler & Mitchell LLP (JMBM)

Jeffer Mangels Butler & Mitchell LLP (JMBM)

JMBM is a full service law firm providing counseling and litigation services in a wide range of areas including cyber security.

Cybersecurity Innovation Hub

Cybersecurity Innovation Hub

The main objective of the Hub is to bring cybersecurity and other advanced technologies closer to companies and as a result help to increase their performance as Industry 4.0.

CSIRT Italia

CSIRT Italia

CSIRT Italia is the national Computer Security Incident Response Team for Italy.

Logic Supply

Logic Supply

Logic Supply is a global industrial PC company focused on hardware for the IoT edge. We design highly-configurable computers engineered for reliability.

Global Incubator Network Austria (GIN Austria)

Global Incubator Network Austria (GIN Austria)

GIN Austria is the connecting link between Austrian and international startups, investors, incubators and accelerators with a focus on selected hotspots in Asia.

Cyemptive Technologies

Cyemptive Technologies

Cyemptive's CyberSlice technology preempts and remove threats before they take hold, in seconds, compared to other’s hours, days, weeks and even months.

PurpleSynapz

PurpleSynapz

PurpleSynapz provides hyper-realistic Cyber Security Training with a modern curriculum and Cyber Range.

Gigit

Gigit

Gigit’s Service portfolio focuses on your business’ needs and the integration of comprehensive cybersecurity policies, plans, procedures, and practices into your business culture and operations.

Digitale Gründerinitiative Oberpfalz (DGO)

Digitale Gründerinitiative Oberpfalz (DGO)

Digital Founder Initiative Oberpfalz's goal is to build a sustainable start-up culture in the field of digitization throughout the Upper Palatinate district of Bavaria.

Incode

Incode

Incode is the leading provider of world-class identity solutions that is reinventing the way humans authenticate and verify their identities online.

RST Cloud

RST Cloud

RST Cloud is a cutting-edge technology company that specialises in threat intelligence solutions for businesses of all sizes.

Cylerian

Cylerian

Cylerian is a Next Generation SaaS Security Platform - One unified cloud platform to achieve your security, compliance, and operational objectives.

IT.ie

IT.ie

IT.ie are a comprehensive provider of Managed IT Services, Cloud Solutions, Cyber Security, and proactive IT support services.