Cyber Risks are Becoming Ever More Serious and Require a Coordinated Response

How is the market for cyber insurance evolving?

In recent years, we’ve seen a sharp increase in cyber incidents, and as a result, a rising demand for cyber insurance. As so many economic activities have rapidly digitalized during the pandemic, companies are increasingly vulnerable to attacks. As today’s cyber criminals are highly sophisticated actors, generally large, agile, and well-financed criminal organizations, it is critical for organizations to have a strong cyber security posture and dedicated insurance partner to help navigate an incident. We want to help our clients before they become a target. As a part of our cyber insurance policies, we offer our clients access to expert vendor partners who provide proactive cyber risk mitigation services at negotiated preferred rates.

Are you seeing an increase in demand from firms that have previously done without cyber insurance?

Yes, we are seeing an increase in demand from organisations which traditionally did not purchase cyber insurance coverage. In these cases, we begin by learning about the security measures the organisation has in place already, to assess the extent of their cyber vulnerabilities. From there, we can advise on specific risk management actions to take to prevent a loss, and when a loss occurs, help the client get their organization back up and running. As cyber-attacks continue to increase and losses mount, clients' prevention and security measures will be a significant focus of the underwriting process. Buyers with poor security hygiene or those unwilling to improve their security posture may have a tougher time finding coverage.

Can you tell us about the unique value provided by AXA cyber experts?

Immediate post-breach services come to mind first. These services are, arguably, just as important as subsequent financial pay-outs. By providing these end-to-end pre- and post-attack services, we ensure that our clients are following regulatory requirements, as well as protecting their reputation and stakeholder trust in the aftermath of an attack. Of course, we are also there later down the road to call on our breach response vendor panel to assist in the recovery of IT systems and data. Coverage may also include providing compensation of business interruption losses that may arise.

What kind of post-breach services do you have in mind?

These services include setting up a call centre within 24 hours of the attack to field enquiries from clients, enlisting computer forensic experts to determine how the unauthorized access occurred and what data was exposed or compromised, as well as support from a legal team with expertise in disclosure requirements in all relevant jurisdictions. While some clients can handle these tasks themselves, most will need their insurance partners, like AXA XL, to be ready on short notice to help them take the necessary steps and corrective actions.

As the Global Chief Underwriting Officer at AXA XL, what are you most proud of?

I am proud of the leadership position that we’ve achieved in helping our clients address their growing cyber risk concerns. We’re partnering with and support our clients globally to help them manage their risk profile and ultimately reduce the chances of having a claim. But when things go wrong, we are there to help put them back on their feet and get them back to business.