Insurers are expanding their use of cloud-based offerings. But carriers are avoiding any cloud-related services that could jeopardize the security and privacy of sensitive data.
Slideshow: Cloud Security Pros And Cons
(click image for larger view and for full slideshow)
Cloud computing and its related shared-computing models--software-as-a-service (SaaS) and platform-as-a-service (PaaS)--present a welcome opportunity for insurers to carve out new efficiencies, and carriers have begun to avail themselves of these opportunities. But while insurance CIOs are warming to a variety of cloud, SaaS, and PaaS offerings, concerns about the privacy and security of sensitive customer data have made insurers cautious about when and where they adopt them.
"Recent headlines about major data breaches have by no means allayed insurers' anxieties around client data confidentiality," notes Clark Troy, research director, Aite Group. "Nonetheless, vendors of SaaS online applications, new business and underwriting, and claims solutions continue to tack up wins--just not in the same volumes one sees in other industries."
Due to the sensitivity of insurance data, the relatively slow adoption of cloud-related solutions in the industry is not likely to change, suggests Rick Roy, CIO of Madison, Wis.-based CUNA Mutual Group ($2.83 billion in 2010 revenue). "We are hearing more about how insurers are adopting SaaS solutions outside their core systems of policy admin, claims, and financials," Roy says. CUNA Mutual uses Salesforce.com for sales force automation and Learn.com for training, and the carrier is converting its human resources platform this year from Oracle's PeopleSoft to Workday, he adds.
But Roy acknowledges the potential drawbacks related to the security, performance, and availability of cloud offerings. "Security for non-public, private information remains a huge concern for insurers, as it is a business issue that spans beyond just a technology issue," he elaborates. "And outages like the recent Amazon Web services incident have also renewed industry concerns around availability and performance of cloud."
These concerns, and the "risk-averse culture" of insurance, tend to limit insurance adoption of cloud-related technologies to non-core IT functions, opines Steve Byrne, VP of agency and field automation technology and acting CTO of Harleysville Insurance ($1.1 billion in 2010 net written premium). "We haven't seen much adoption of SaaS or cloud infrastructure for core systems, such as policy administration and claims," he says.
Nonetheless, the cloud does offer insurers efficiency opportunities, including in software development and testing, Byrne stresses. "To buy the hardware for [test] environments is extremely expensive, and they will sit idle most of the time anyway," he explains. "The virtualization and grid-like capabilities of cloud allow you to quickly provision the needed resources--including platform, database, operating systems, and applications--required to support developing and testing activities."
Byrne adds, "The beauty of it is that it's vapor--you push a button and it's there, and the second you've completed your activity, you tear it down."
Other potential uses of cloud technology in insurance include functions like monthly analytical scoring, for which computing capabilities can be accessed for only 12 days of the year without having to pay for idle infrastructure during the other 353 days, Byrne says, adding that similar advantages would prevail for an insurer exploring a new business venture. "Often, in the past, IT would be faced with acquiring and building out infrastructure to support a new venture. If the venture didn't result in success, you'd be stuck with unneeded infrastructure," he comments.
See the latest IT solutions at Interop New York. Learn to leverage business technology innovations--including cloud, virtualization, security, mobility, and data center advances--that cut costs, increase productivity, and drive business value. Save 25% on Flex and Conference Passes or get a Free Expo Pass with code CPFHNY25. It happens in New York City, Oct. 3-7, 2011. Register now.
How Enterprises Are Attacking the IT Security EnterpriseTo learn more about what organizations are doing to tackle attacks and threats we surveyed a group of 300 IT and infosec professionals to find out what their biggest IT security challenges are and what they're doing to defend against today's threats. Download the report to see what they're saying.
Digital Transformation Myths & TruthsTransformation is on every IT organization's to-do list, but effectively transforming IT means a major shift in technology as well as business models and culture. In this IT Trend Report, we examine some of the misconceptions of digital transformation and look at steps you can take to succeed technically and culturally.