General Insurance Article - Models must evolve to tackle silent cyber


The growing pressure on insurers to identity so-called ‘silent cyber’ risk hidden within traditional non-cyber insurance products must lead to changes in the way the industry’s cyber modelling tools are constructed. This is one of the conclusions of a new report on silent cyber risk published by CyberCube, the market-leading cyber risk analytics company for the insurance industry.

 According to the report, Accurately Assessing Silent Exposure: A Step Towards Strengthening the Cyber Market’s Development, cyber models need to expand their scope in order to cover a much broader range of insurance lines if non-affirmative cyber risks are to be identified and analysed effectively. Traditionally, cyber models have been restricted to property lines of business.

 The company also warned that concern among reinsurers will compel cedants to eliminate ambiguity in primary insurance contracts. One approach by carriers relating to silent cyber is to exclude this exposure, however, insurers may not want to disrupt the coverage in place for their clients in any meaningful way.

 Commenting on the report, CyberCube’s Co-founder and Head of Product & Analytics, Ashwin Kashyap, said: “Insurers are finding themselves squeezed between regulators and reinsurers who both want the issue of non-affirmative cyber risk to be tackled. The potential cost implications of failing to address it are frightening.

 “At present, global standalone cyber premiums are estimated to be in the region of $5.5 billion, but the connected exposures and premiums at risk from silent cyber across all Property and Casualty lines is higher by an order of magnitude. This explains the nervousness among market regulators and reinsurers.”

 The report argues that the rapid growth of cyber insurance has created challenges for claims professionals and carriers seeking to set loss reserves and forecast their capital requirements. Ashwin Kashyap, report author, added: “Insurers and reinsurers need to determine accurate cyber loss reserves, but currently it is proving very hard to allocate definitive loss reserves for the development profile of these incidents. For insurers, therefore, scenario-based modelling has got to be the route forward, but this isn’t without problems.

 “The lack of high-quality, detailed exposure data for established lines of business is a brake on progress. Models need to be able to handle aggregated data and, in many cases, incomplete information is being used to provide estimates. This is clearly not helpful for the industry. Insurers will face challenges if they are held responsible for cyber-related claims as a result of ambiguous policy wordings in standard commercial products, such as business interruption covers.”

 Silent cyber or non-affirmative cyber are terms used to describe unidentified cyber risks present within non-cyber insurance policies. As conventional insurance policies, many of which were drafted in the pre-internet era, were not designed to include cyber as a potential risk, they do not specifically reference digital perils.

 Yvette Essen, Head of Content at CyberCube, said: “Traditional insurance products were developed before cyber risk become a meaningful concern for (re)insurers. As conventional insurance policies were not designed to include cyber as a potential risk, they did not specifically reference digital perils (either proactively incorporating or excluding) as these were not actively considered at the time of underwriting. Recently developed insurance products are more explicit as to whether cyber risk is covered.”

 According to CyberCube’s report, examples of silent cyber include claims for business interruption costs as a result of a large-scale cyber attack or the collapse of a company’s share value due to a devastating ransomware attack.

 Lloyd’s of London syndicates have until 1 January 2020 to address silent cyber in contracts across all first-party property damage lines of business. The Prudential Regulation Authority has written to insurance CEOs stating that a number of traditional lines of business have considerable exposure to non-affirmative cyber risk. It also cited concerns that certain classes, including casualty and motor, have the largest non-affirmative exposure.

 Accurately Assessing Silent Exposure: A Step Towards Strengthening the Cyber Market’s Development  

Back to Index


Similar News to this Story

Aon publish their latest Global Catastrophe Recap report
Aon launches the latest edition of its monthly Global Catastrophe Recap report, which evaluates the impact of the natural disaster events that occurre
Insurers set for huge rise in business interruption claims
Business interruption claims will soar in the UK as a result of the COVID-19 lockdown. GlobalData’s revised post-COVID-19 forecasts general insurance
Most students in the dark about insurance
HALF of students don't understand the term 'contents insurance', a new survey has found. A poll of 1680 students conducted by UNIDAYS a

Site Search

Exact   Any  

Latest Actuarial Jobs

Actuarial Login

Email
Password
 Jobseeker    Client
Reminder Logon

APA Sponsors

Actuarial Jobs & News Feeds

Jobs RSS News RSS

WikiActuary

Be the first to contribute to our definitive actuarial reference forum. Built by actuaries for actuaries.