Strategic Intelligence for CFOs, Finance Directors, Controllers and Treasurers in Asia  | 
2013, Jun 19

Cyber Insurance: Does Your Company Need One?

Home > Features > Cyber Insurance: Does Your Company Need One?
Features

Cyber Insurance: Does Your Company Need One?

by Carol Ko and Sheila Lam, 12 June 2012
topics:
Risk Management
tags:
cyber insurance policy insurance
On 10 August last year, HKEX, operator of the Hong Kong stock exchange, halted trading in the equity securities and related structured products of seven listed companies. This was after access to the HKEXnews website, which publishes corporate regulatory disclosures, became unstable – it was apparently the target of malicious hacking attacks.
 
HKEX shares ended the trading day at HK$141.20, then fell 3.3% to HK$136.50 on 11 August. The company clawed back its losses only on 15 August, when the share price closed at HK$140.30.
 
The stock exchange operator was relatively lucky. “We know from our research that cyber attacks can cause serious reputational damage,” says Marc Breuil, President and CEO of Chartis Insurance Hong Kong. “A recent report suggested that more than three-quarters of people would cease working with an organization in the event of a security breach, and the average share price drop in response to notifying the market of a network security breach is 5%.”
 
“Cyber attacks, often in the form of data breaches and network intrusions, can also impact operations, frequently result in lost productivity, legal expenses, third party liabilities, exposed intellectual property, and damage to a firm's reputation,” Breuil adds.
 
Cyber insurance, anyone?
If Breuil has his way, they would also take out a cyber insurance policy, a product Chartis recently launched in Asia Pacific to cover liabilities arising from cyber attacks. Called CyberEdge, the policy is initially targeted at enterprises in Australia, New Zealand, Singapore and Hong Kong that have a minimum annual turnover of US$100,000.
 
The maximum coverage is currently capped at US$10 million, subject to individual risk assessment. That ceiling should be ample since “the average cost of data security breaches is US$7 million,” reports Ian Pollard, Chartis Vice President, Asia Pacific.
 
In the US, the average claim over the last four years comes to US$5.2 million. “We paid whether it's the defense costs [in relation to lawsuits], claims for third-party liabilities, a fine as penalty, notification costs or forensic expenses,” he adds.
 
The cyber-insurance products of other insurers, including Chubb and Zurich, are roughly similar.
 
Does it make sense?
The question, though, is whether cyber insurance makes sense. If a company already has professional liability coverage, for example, isn’t this new product redundant and therefore a waste of money?
 
Stella Tse, Asia leader for the financial and professional risks practice at insurance broking firm Marsh, argues otherwise. “Many banks and financial institutions are protected from data loss due to computer failure through professional liability and computer crime coverage,” she says. “There could be overlaps with such existing insurance coverage, but cyber insurance would bring additional coverage to existing policies."
 
123next ›last »


Related articles

Comment on this article

The content of this field is kept private and will not be shown publicly.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Allowed HTML tags: <a> <em> <strong> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd> <a> <p> <span> <div> <h1> <h2> <h3> <h4> <h5> <h6> <img> <img /> <map> <area> <hr> <br> <br /> <ul> <ol> <li> <dl> <dt> <dd> <table> <tr> <td> <em> <b> <u> <i> <strong> <font> <del> <ins> <sub> <sup> <quote> <blockquote> <pre> <address> <code> <cite> <embed> <object> <strike> <caption>
  • Lines and paragraphs break automatically.
  • Use <!--pagebreak--> to create page breaks.

More information about formatting options

Verification Code
This question is for testing whether you are a human visitor and to prevent automated spam submissions.

Accounting and Regulations

CFO innovation Asia Accounting and Regulation the Asia Pacific resource center for senior finance executives, daily news, analysis, best practice and case studies in Accounting Regulation, IFRS, US GAAP, Tax, investor relations, corporate governance, Corporate Law, Financial Regulators, Internal Audit, Audit, Corporate Law.
Auditing, Investor Relations, Law and Compliance, Tax

Finance and Banking

CFO innovation Asia, Finance and Banking the Asia Pacific resource center for senior finance executives, daily news, analysis, best practice and case studies in Corporate Finance, trade finance, treasury and risk management, capital expenditure, Banking, mergers and acquisitions
Cash and Liquidity Management, Corporate Finance, Insurance, Treasury Management

Management

CFO innovation Asia the Asia Pacific resource center for senior finance executives, daily news, analysis, best practice and case studies in Finance Management, Corporate Governance, Human Resource Management, Compensation and Benefits, Mergers and Acquisitions, Professional Development, Corporate Real Estate, Risk Management, Budgeting and Forecasting, Business Process Management, Business Process Reengineering, Outsourcing.
Budgeting and Planning, Business Expense Management, Human Capital Management, Outsourcing and Shared Services, Risk Management

Metrics

Corporates, Financial Services

Technology

CFO innovation Asia Technology the Asia Pacific resource center for senior finance executives, daily news, analysis, best practice and case studies in Finance Systems, Business Intelligence, EPR, Accounting software, CRM, Cloud Computing, Telecommunications, Business Process Outsourcing, Business Process Management Software.
Business Intelligence, Enterprise Software and Systems, Financial Systems, Security