Modern Insurance Magazine Issue 65

More documents

Recommendations

Info

INSURTECH Lisa Pollina QLisa, you recently wrote in Forbes about geopolitical risks for businesses worldwide. What do you see as increased cybersecurity risk in this time of geopolitical instability? A Firstly, there’s what we intuitively know. Greater geopolitical friction results in more attempts by bad actors to infiltrate companies, based upon everything from boldness and business distraction to fostering a nation-State’s interest. The well-documented attacks on US government systems are aimed hourly at the private sector as well. Viewing (and taking control) of key elements of a business and its data can aid governments and military of certain nations in the immediate term, and allow visibility into forward movements by companies, partners and alliances aiding in deployment of strategies that flow against those of the corporations hacked. The Forbes article was related to how both Board and Management team members should navigate duty of care for their organizations, by protecting employees but also by maintaining the organization’s wellbeing while safeguarding the bottom line. Robust cybersecurity controls relate to all of these items. QWhat are some emerging cybersecurity trends that we should be aware of and prepare for? A Recently, a gang called Star Fraud perpetrated a hack on MGM in Las Vegas, demanding $30 Million in ransom. This group emerged from an online community called ‘the Com’, which, unlike traditional archetypes of hackers, are predominantly Englishspeaking teenagers who are motivated by status and money, as opposed to the more traditional approach of showing off their technology skills to execute the hack. Expect more from this cohort, alongside some additional trends such as: Zero Trust Architecture. This assumes that threats could be both external and internal. Requires strict identity verification for every person and device trying to access resources on a network, regardless of whether they are inside or outside the network perimeter. Artificial Intelligence (AI) and Machine Learning (ML) are increasingly being used for threat detection, anomaly detection, and behavior analysis, which will allow us to better identify and respond to potential security breaches. Cloud Security. Ensuring the security of Cloud environments has become crucial since the increased adoption of Cloud services. Diligent Corporation estimated that 94% of US enterprises use Cloud services, 67% of enterprise infrastructure is now cloud based, and 92% of businesses have a multi-cloud strategy in place (or in the works). QIs AI a friend, foe, or both? Can AI help detect and react to a breach in real time? Conversely, what is the threat of AI in the wrong hands of a cybercriminal? Artificial Intelligence can be a friend in the cybersecurity sense due to the following: ARisk Assessment and Underwriting. AI can help insurers better assess risk by analyzing vast amounts of historical claims data, customer demographics, and even social media activity, leading to more accurate underwriting decisions and pricing models. Claims Processing. AI can streamline claims processing by automatically reviewing and approving straightforward claims, reducing the need for manual intervention and speeding up the process for customers. Fraud Detection. AI can analyze patterns and anomalies in claims data, helping insurers to save millions of dollars annually. Regarding cybersecurity, AI is a tool for cybersecurity defense, and it can also help to detect and react to cybersecurity breaches by continuously monitoring networks and systems for unusual activity, identifying potential threats and taking proactive measures to mitigate risks. In terms of AI as ‘foe’ – yes, it could pose significant threats in the wrong hands. Examples include automated attacks - including reconnaissance, phishing, and malware deployment, allowing cybercriminals to launch attacks at scale with little human intervention – and sophisticated attacks, where attackers are enabled to adapt their tactics in real time, exploiting vulnerabilities in specific systems or organizations. 76 | MODERN INSURANCE
INSURTECH QWhat are some of the most pressing cybersecurity issues facing the insurance industry in particular? How often should insurance companies conduct security assessments and vulnerability testing? For insurance incumbents and insurtechs alike, there is no ‘one size fits all’ answer, as it depends A on various factors such as the size of the company, the complexity of its IT infrastructure, regulatory requirements, and the evolving threat landscape. Security assessments and vulnerability testing should be done on a defined regular basis, and augmented whenever there are emerging threats, or significant changes to the IT environment. Some of the most omnipresent issues include ransomware attacks, which have become increasingly common in recent years. Cybercriminals have been known to target organizations of all sizes, including insurance companies. The FBI advises companies not to pay ransoms. Nearly 30% of victims did so last year, which is down 72% from four years earlier. According to The Wall Street Journal, the average ransom is $569,000 USD. <strong>Insurance</strong> companies are also subject to various regulations regarding data protection and privacy, such as GDPR, CCPA, and HIPAA in the United States. All of these can be compromised. Finally, third party risk via third-party vendors and partners increases the risk of a supply chain attack. KPMG completed a study where 75% of the respondents experienced a major business disruption because of a third party in the last three years. Lisa Pollina is a business executive who has negotiated over $50 Billion in corporate development deals throughout her career. She provides private equity investment advisory for alternative asset manager Ares Management (NYSE: ARES) on both Growth and Special Opportunities portfolio investments worldwide. She also serves on the Board of Directors for Munich RE (FRA: MUNV2), representing the Americas. Pollina has had global Profit & Loss responsibility for over 20 years. She is the past Vice Chairman for RBC Capital Markets, an $8 Billion division of the Royal Bank of Canada (NYSE: RY), where she grew revenues by 27% during her tenure, and the Global Financial Institutions (FIG) Executive for Bank of America Securities (NYSE: BAC). Under her leadership there, profitable revenues grew over 18%. Named one of the ‘Top 25 Most Powerful Women in Finance’ by American Banker magazine, she has been a seven-year appointee to the Federal Reserve Bank of the United States’ Working Group on Global Markets, providing perspectives on macro trends worldwide. Ms. Pollina is an MBA graduate from the Yale School of Management. She has taught strategy at Yale University and corporate finance at the University of Chicago. She has been published via such media outlets as Forbes, Bloomberg and Morningstar magazines. In 2021, during the tenure of Pope Francis, Pollina was made a Dame in the Sovereign Military Order of St. John of Jerusalem, of Rhodes, and of Malta. QWhat advice do you have for the C-suite and Boards of Directors when it comes to working together and collaborating against mounting cybersecurity risk? A Establish a Cybersecurity Governance Structure that clearly delineates how the duty of care in this area will be deployed by implementing clear roles and responsibilities for the C-suite and the Board regarding cybersecurity oversight. Facilitate open and transparent communication channels between the C-suite and the Board regarding cybersecurity matters. Provide regular updates on cybersecurity incidents through audits to the Board and Audit Committee. <strong>Insurance</strong> is in the business of risk. Ensure that cybersecurity initiatives are aligned with your firm’s risk appetite, goals, and priorities. Collaborate on identifying and prioritizing cybersecurity risks based on their potential impact on the business. Invest in cybersecurity resilience by allocating adequate resources and budget to cybersecurity initiatives, including technology investments, training, and third-party experts in emerging cybersecurity areas. Lisa Pollina MODERN INSURANCE | 77
Page 1 and 2:
ISSUE 65 ISSN 2515-3803 I SPY CYBER
Page 3 and 4:
WELCOME Welcome to Issue 65 of Mode
Page 5 and 6:
8 12 14 17 29 38 44 49 51 53 55 Ins
Page 7 and 8:
EUROPCAR NEW BRAND BLOCK Color grad
Page 9 and 10:
Risk sentiment Hiscox Cyber Readine
Page 11 and 12:
Page 07 Impacts of a cyber attack (
Page 13 and 14:
Q Ken - what’s the appeal for hac
Page 15 and 16:
INTERVIEWS that there aren’t some
Page 17 and 18:
EDITORIAL BOARD A Varied Approach t
Page 19 and 20:
Consumer Duty Defines the Role EDIT
Page 21 and 22:
EDITORIAL BOARD The Vizion Standard
Page 23 and 24:
EDITORIAL BOARD Embedding Consumer
Page 25: EDITORIAL BOARD Data Security at ED
Page 28 and 29: BOOKED IT. PACKED IT. WE’RE OFF.
Page 30 and 31: EMPOWERING THE FUTURE OF REPAIR Tec
Page 32 and 33: Straightforward insurance technolog
Page 35 and 36: ASSOCIATIONS ASSEMBLE Fleur Thomas
Page 37 and 38: ASSOCIATIONS ASSEMBLE Sue Brown Tit
Page 39 and 40: COUNTER FRAUD ACTIVITY: UK VS. US T
Page 41 and 42: THE DISTINCT LANDSCAPES OF INSURANC
Page 43 and 44: Jonathan Drake IMPROVING AGILITY, M
Page 45: Keeping insurers fully in the loop
Page 49 and 50: Friction Is the Key to Customer Suc
Page 51 and 52: Put the Sugarin First FEATURES As I
Page 53 and 54: A Total Loss Could Be An Electric G
Page 55: FEATURES THE EVOLVING RISK OF CYBER
Page 58 and 59: A new approach to repair management
Page 60 and 61: Modern Insurance Magazine’s notor
Page 62 and 63: Results INSURER OF THE YEAR WINNER
Page 64 and 65: “The team at Modern Insurance Mag
Page 66 and 67: INSUR. TECH. TALK
Page 68 and 69: INSURTECH Google Cloud QMonica, mor
Page 70 and 71: INSURTECH Capgemini AXA XL QCaitlin
Page 73 and 74: INSURTECH Munich Re Dikla, what are
Page 75: INSURTECH Q Is AI a friend, foe, or
Page 80 and 81: INSURTECH Welcoming… Percayso Inf
Page 83: INSURTECH Strategic Priority: Opera
Page 86 and 87: INSURTECH The Fastest Fish in the O
Page 88: Any me, any place, anywhere... FMG
show all

Modern Insurance Magazine Issue 65

Create successful ePaper yourself

Delete template?

Save as template?