Skip to Main content Skip to Navigation
New interface
Conference papers

Differentiating Cyber Risk of Insurance Customers: The Insurance Company Perspective

Abstract : As a basis for offering policy and setting tariffs, cyber-insurance carriers need to assess the cyber risk of companies. This paper explores the challenges insurance companies face in assessing cyber risk, based on literature and interviews with representatives from insurers. The interview subjects represent insurance companies offering cyber-insurance in a market where this is a new and unknown product. They have limited historical data, with few examples of incidents leading to payout. This lack of experience and data, together with the need for an efficient sales process, highly impacts their approach to risk assessment. Two options for improving the ability to perform thorough yet efficient assessments of cyber risk are explored in this paper: basing analysis on reusable sector-specific risk models, and including managed security service providers (MSSPs) in the value chain.
Complete list of metadata

Cited literature [29 references]  Display  Hide  Download
Contributor : Hal Ifip Connect in order to contact the contributor
Submitted on : Tuesday, November 14, 2017 - 4:07:15 PM
Last modification on : Thursday, December 3, 2020 - 9:24:12 AM
Long-term archiving on: : Thursday, February 15, 2018 - 1:43:21 PM


Files produced by the author(s)


Distributed under a Creative Commons Attribution 4.0 International License



Inger Anne Tøndel, Fredrik Seehusen, Erlend Andreas Gjære, Marie Moe. Differentiating Cyber Risk of Insurance Customers: The Insurance Company Perspective. International Conference on Availability, Reliability, and Security (CD-ARES), Aug 2016, Salzburg, Austria. pp.175-190, ⟨10.1007/978-3-319-45507-5_12⟩. ⟨hal-01635023⟩



Record views


Files downloads