IDC: Cyber Insurance Will Be Commonplace In The Future - InformationWeek
IT Leadership // Security & Risk Strategy
02:06 PM

IDC: Cyber Insurance Will Be Commonplace In The Future

IDC is advising insurers faced with a mature market to consider offering cyber insurance. Cybercrimes, it says, have cost the global economy $445 billion.

10 CIOs Worth Following On Twitter
10 CIOs Worth Following On Twitter
(Click image for larger view and slideshow.)

In a mature insurance market, IDC has identified cyber insurance as an "excellent" opportunity for insurers. It expects the segment to see double-digit growth year-on-year, from $2 billion in premiums worldwide today to potentially more than $20 billion in the next 10 years, the firm said in a March 15 announcement of a new report.

"Considering the scale and magnitude of the problem, it is obvious that there is huge potential for the cyber insurance market today," wrote report author Sabitha Majukumar.

Approximately 81% of large businesses and 60% of small businesses suffered a cyber-security breach in 2014, according a March 2015 report by the UK government. On the whole, cybercrimes have cost the global economy an estimated $445 billion -- "more than most countries' GDP," wrote Majukumar, citing the World Economic Forum's "Global Risks Report 2016."

(Image: Mikko Lemola/iStockphoto)

(Image: Mikko Lemola/iStockphoto)

While some industries are more vulnerable than others (banking and healthcare face the greatest threats), no industry has been spared:

  • Mobile network service provider TalkTalk was hacked in October 2015, impacting 157,000 customers.
  • In July, the Obama administration revealed that the health and financial histories of nearly 20 million people had been stolen in a hack of US government computer systems.
  • In February 2015, healthcare company Anthem announced it had been hacked, compromising the personal information of nearly 79 million people, including current and former customers and employees. 
  • And JP Morgan Chase, Dow Jones, and at least four other banks suffered coordinated attacks over the summer of 2014, impacting more than 100 million people.

Insurers Have Been Cautious

Among the concerns that held back insurers from exploiting the opportunity are a lack of historical data on cyber-risks, a lack of understanding of the risks involved, and a lack of insights into the cyber-risk management practices of policyholders. 

"The risks are always evolving, due to the fluid nature of technologies in the digital and connected world," wrote Majukumar.

However, assistance may come in the form of big data and analytics.

Gain insight into the latest threats and emerging best practices for managing them. Attend the Security Track at Interop Las Vegas, May 2-6. Register now!

"Effective data handling is key to the future of cyber insurance offering[s]," states the perspective. "Insurers' data systems should also be integrated into public databases ... to effectively manage and understand potential cyber threats."

It adds that insurers must have real-time monitoring of policyholders' risk exposure, in order to better manage and protect their risk portfolios.

What cyber insurance isn't -- and cannot be -- is a substitute for cyber-security. But it should be an integral element of a company's risk-management strategy, said IDC, which over the next 10 years expects cyber insurance to be as common a purchase for businesses in the UK as property insurance is currently.

Michelle Maisto is a writer, a reader, a plotter, a cook, and a thinker whose career has revolved around food and technology. She has been, among other things, the editor-in-chief of Mobile Enterprise Magazine, a reporter on consumer mobile products and wireless networks for ... View Full Bio

Comment  | 
Print  | 
More Insights
Newest First  |  Oldest First  |  Threaded View
User Rank: Ninja
3/15/2016 | 6:31:14 PM
Cyber Insurance
Unlike life insurance, insurance companies don't have a hundred years of actuarial data or histories of crime data to base decisions on. I wonder if data analytics can really shorten the path to writing policies. How would that work in terms of risk?


>> Among the concerns that held back insurers from exploiting the opportunity are a lack of historical data on cyber-risks, a lack of understanding of the risks involved, and a lack of insights into the cyber-risk management practices of policyholders. 
User Rank: Apprentice
3/15/2016 | 4:38:10 PM
Cyber security and cyber insurance
Thank you for emphasing that cyber security is not the same as cyber insurance.

However, both cyber security and cyber insurance are necessary.


Marilyn Kelson, President

Comprehensive Financial Services, LLC

Phone 402-596-1958

How Enterprises Are Attacking the IT Security Enterprise
How Enterprises Are Attacking the IT Security Enterprise
To learn more about what organizations are doing to tackle attacks and threats we surveyed a group of 300 IT and infosec professionals to find out what their biggest IT security challenges are and what they're doing to defend against today's threats. Download the report to see what they're saying.
Register for InformationWeek Newsletters
White Papers
Current Issue
2017 State of the Cloud Report
As the use of public cloud becomes a given, IT leaders must navigate the transition and advocate for management tools or architectures that allow them to realize the benefits they seek. Download this report to explore the issues and how to best leverage the cloud moving forward.
Twitter Feed
InformationWeek Radio
Archived InformationWeek Radio
Join us for a roundup of the top stories on for the week of November 6, 2016. We'll be talking with the editors and correspondents who brought you the top stories of the week to get the "story behind the story."
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.
Flash Poll