Cyber Insurance: Brokers’ Key Questions Answered

Cyber Insurance: Brokers’ Key Questions Answered

This interview is part of a special report published by Insurance Business Canada.

Michael Kalakauskas, Trisura’s assistant vice-president and product manager of professional liability and cyber liability, recently shared his perspective on key cyber trends and what brokers need to keep in mind.

IB | What key market trends should brokers be aware of in the cyber insurance space in 2019?

IB Special Cyber ReportI would place key market trends into two different categories: cybersecurity trends and cyber coverage trends. Both categories should be front of mind for brokers, not only in 2019, but in the years to come as well, as they allow brokers to think of exposure, risk and insurance solutions simultaneously.

From a cybersecurity trend standpoint, the sheer volume of cyber attacks and compromised personal information on a worldwide level is at an all-time high and will only continue to grow with the expansion of things like company interconnectivity, the Internet of things, the use of cloud services, artificial intelligence and machine learning, automation, and small to medium-sized business vulnerability.

These trends are at the heart of cybersecurity and point to the need for all organizations to increase their security and awareness in protecting themselves against cyber attacks and data breaches. Cyber criminals and attackers are only getting more sophisticated, so as an industry, we need to keep up with, and respond to, emerging threats. Another important trend from a cybersecurity standpoint is the evolving landscape of international data privacy laws and government/regulatory body involvement.

From a cyber coverage standpoint, brokers need to be aware that third-party liability coverage for data breaches is only one piece of the overall cyber insurance puzzle. The trends from a coverage standpoint – and the biggest causes of current cyber claims, in Trisura’s experience – are ransomware, social engineering and business interruption. Not all businesses carry large amounts of personal data that data breaches might target; however, all businesses are dependent on computers, cell phones and the internet, ultimately making them vulnerable to different types of cyber attacks.

The one thing all companies do hold is employee data, so all companies are exposed to a potential data breach. Our experience, though, is that the coverages I mentioned are the ones most sought after by small- to medium-sized businesses. It is easier to target small- and mid-sized companies, as they may not have adequate security measures and resources in place to protect themselves. Small companies must reassess their security position and ensure adequate measures and controls are implemented to safeguard against today’s cyber attacks.

IB | Which client groups should be the target markets for cyber insurance this year?
All client groups! All businesses – small, medium or large – have cyber exposures, and each company should be having conversations with their insurance broker about adequate cyber insurance coverage and risk transfer options.

That said, I would prioritize some of the industries that have not previously bought cyber insurance on a widespread basis. Industries including finance, banking, healthcare, retail and hospitality – all well known for holding and using personal information – have already been exposed to cyber insurance and the risk of data breaches; however, industries like construction, transportation and manufacturing, as well as smaller professional offices, are slowly being exposed to the importance of cybersecurity and need more awareness in this space.

At Trisura, we are trying to increase the exposure of cyber insurance with all our small- to medium-sized business clients, regardless of industry type. As mentioned, it is easier to target small- and mid-sized companies, as they may not have adequate security measures and resources in place to protect themselves. Trisura has a large surety book that comprises clients of all sizes in the construction industry – for example, builders, developers and contractors – and with them being more reliant on technology and computers, it is imperative we offer cyber solutions as part of their overall insurance and surety bonding package.

Likewise, we insure many small- to medium-sized professional offices for E&O and directors & officers liability and are currently trying to target them for cyber coverage as part of their insurance portfolio.

IB | How can brokers overcome the “it won’t happen to me” mentality held by many smaller businesses in reference to cyber attacks?
All businesses, regardless of size and industry type, have cyber exposure. Regardless of whether they hold or store their customers’ or suppliers’ personal data or corporate information, they have data on all of their employees that is at risk. Furthermore, all companies are reliant on computers, cell phones and the internet, and therefore would be susceptible to loss in the event of a cyber attack like ransomware, a hack, data loss, payment diversion or phishing, malware, and software or hardware failure.

Cyber attacks are indiscriminate. Even if it’s not from an attacker, one of the biggest forms of cyber exposure is the error of an employee clicking the wrong link, sending an email to the wrong person or leaving an unencrypted laptop or cell phone at a public place. Cyber exposure could come from anywhere, and if it were to happen, it could give rise to significant financial loss.

My rule of thumb is to advise businesses that cyber attacks are not a matter of ‘if ’ but more of ‘when’ – and whether the company is able to withstand the financial impact of such an attack or loss. If the company is not equipped to sustain such an attack, or the business would like some additional protection, then cyber insurance is a key to their risk management process, no matter the size of their business.

IB | What are the key differences between cyber as a stand-alone product and as an add-on? In which situations should brokers consider one option the better choice for clients?
The key difference between a stand-alone cyber product and an add-on by endorsement is the quality of the coverage and of the claims service. With a stand-alone cyber policy, you are getting a dedicated product – and limits – with specific and broad coverage and, most likely, access to a comprehensive cyber response team that can help navigate any claim or cyber incident. Most add-on cyber endorsements cover such a limited amount, and language tends to be very restrictive. Furthermore, add-ons usually contain such a small limit of liability, or the limit itself is shared with the main policy limit.

My hope is that add-ons become less and less used in the industry and that all clients – again, regardless of size and operation – purchase a stand-alone cyber policy to properly cover themselves. Another advantage of a stand-alone policy is that it is most likely being managed by a dedicated and experienced cyber underwriter. A true cyber underwriter can not only help with exposure and risk identification, but can also tailor the cyber policy and coverage to the specific needs of the client. Most add-ons are offered by underwriters in the professional liability or casualty space, and they may not have any expertise in the field whatsoever.

IB | What are the vital elements of a good cyber insurance policy, and which elements are particularly important for different clients?
Overall, good cyber insurance provides coverage for both an insured’s first-party and third-party losses associated with a network security breach, or the loss, theft or unauthorized disclosure of personal information or confidential corporation information. The coverage should include expenses related to breach notification, extortion threats, public relations, credit monitoring, forensic investigation, defence costs, the costs of judgments or settlements, regulatory claims, business interruption, and media liability, among other things. Every business has an exposure and should be protected accordingly. Exposures come in the form of employee information, customer information, internet access, electronic and network activities, and the overall use of technology.

Specifically, the most important element of any good cyber insurance policy is the claims handling service and response team associated with it. A cyber insurance policy should give clients access to experts in all fields of cybersecurity and make them feel comfortable throughout the whole process, whether it is a full-blown claim, a possible breach or a system hack. A good response team should include law firms and breach coaches, forensics and investigation professionals, public relations and communication specialists, and breach notification, identity repair and credit monitoring firms.

Legal experts can help minimize the risk of litigation and fines in the wake of a breach. They can provide legal advice based on your specific incident, such as determining how to notify affected individuals, government agencies, third parties and others who may be impacted. The law firms and breach coaches can also manage breach response teams and oversee all aspects of the response.

Forensic and investigative providers can advise your organization on how to stop the current data loss, prevent further harm and secure evidence as necessary. They can also determine where, when and how the breach or hack occurred, analyze data sources to determine what information has been compromised, and assist in data restoration.

Public relations providers can help develop both the internal and external communications needed during an incident, as well as oversee crisis management services. They can also provide advice on how to best position the incident to key audiences, update social media and help manage media questions related to the issue.

Breach notification providers can help in the form of credit monitoring, credit reports, call centre services and direct mail campaigns.

 

 

Climate Change: It’s Risky Business

Climate Change: It’s Risky Business

By James Bennett

 

As we all know, climate change is one of the most prominent topics in the news – so much so that it is being touted as a major deciding factor for Canadian politicians in the upcoming federal election. But, what does this mean for businesses?

Where this becomes an interesting topic is the implications it has on a public company’s board of directors. I.e., what measures are the directors taking to disclose their exposure to climate change, and how can it affect their directors’ and officers’ (D&O) insurance?

Climate Change, James Bennett articleAs a recent article called from Davies Ward Phillips & Vineberg LLP highlights, investors and stakeholders in corporations continue to seek greater transparency when it comes to climate-related reporting and the unsatisfactory disclosure regarding these risks. The article expands on this topic and notes how the Canadian Securities Administrators (CSA) published a report in 2018 on climate change-related disclosures. Due to their findings and the increased scrutiny mentioned above, the CSA published an updated Staff Notice on August 1, 2019, on the reporting of climate change-related risks.

We don’t yet know the true impacts of these changes to reporting guidelines. However, brokers can further help their public-company D&O clients by taking a proactive approach in addressing these new exposures. For each of their clients, brokers should ask themselves, “Does this company have an exposure to climate change?” And, if the answer is yes, the next question should be, “Does the company provide adequate disclosure of these exposures in their public filing documents?” If these companies are not providing adequate disclosure, then an opportunity to provide risk management advice arises.

What exactly should brokers be looking for?

Like most emerging risks, this is not an area where you will have a one-size-fits-all answer because each industry is going to be different. For example, if your client is a mining company, you want to be looking for information on what they are doing with the mines. Some starting questions to think about might be:

  • Are they dependent on fresh water for their refining process?Climate Change, James Bennett article
  • What is the water source like? Is there the potential of it drying up and impairing the mine?

Another example would be if a public company has coastal operations. In this case, you might want to consider:

  • What happens if the sea level rises a foot?
  • How will a higher sea level impact the business?
  • Is the company disclosing these types of issues/exposures?

These are only a couple of examples of the possible scenarios that may arise from climate change. Any issues that might emerge will hover around the impacts of climate change on a business, the risk assessment on climate change risk and the disclosure of these risks. 

To learn more about what climate change means for the insurance industry, you can read the original article here.

Find out if your client’s business may be exposed by contacting your Trisura representative today! Contact us here.

What’s new in specialty lines?

What’s new in specialty lines?

This article was originally published by Canadian Underwriter on June 5th, 2019

Read the original article here.

Author: Jason Contant

 

Chris Sekine, the new president and CEO of Trisura Guarantee Insurance Company, reveals the hottest of the hot opportunities in commercial insurance lines right now.

cu | Before we hear your thoughts about business insurance, let’s first talk about your new role. You recently took over the helm at Trisura Guarantee Insurance Company from Mike George. How is it going so far?

CU article with Chris Sekine It’s been going very well, and I’m excited to be in the role of CEO. Last year was one of Trisura’s best years ever and we are well-positioned for the future. Over the past couple of weeks, Mike and I have been travelling together and attending a few industry conventions. The timing has been good because we were able to have fun, connect with many of our brokers and highlight together that it’s business as usual for Trisura. Mike has been my friend and mentor for many years and he has been instrumental in helping me with the transition into my new role.

I’ve been with Trisura since the beginning and plan to build on the strategy and formula that has made us successful. A critical part of that is our great team of people who create exceptional experiences for our brokers and their clients. We will continuously work to improve our service levels and product offerings.

cu | Okay, let’s talk about commercial lines. What would you say are the key trends in this area?

Commercial lines is a broad area with different trends. Since Trisura is a specialty lines company, I’ll speak more to our specific lines of business — namely D&O, E&O, fidelity, media, cyber and surety — as opposed to commercial insurance in general.

From a D&O perspective, boards and directors need to be aware of a lot of emerging risks — including climate change. How much information a company discloses about its climate change risks and opportunities, as well as how it discloses the information, can each have a material impact on share price and valuation of the corporation.
Another developing risk is the #MeToo movement. This is a unique exposure that hits all parts of our D&O book of business, including non-profits, private companies and public companies. It continues to be a relevant consideration for company board members and it continues to affect claims activity.

The health of the Canadian economy over the next 12 to 14 months is one of the bigger emerging exposures we are watching. I’m sure you could speak to many different economists and they will all have varying opinions. Certainly, a large risk would be for the economy to head into a downturn over the next couple of years. Companies will need to be ready, especially if there is tightening of credit. A potential catalyst is a change in government and the effect on government spending. The risk is particularly relevant to the construction sector, for example. There are a lot of political unknowns that could affect the economy. For example, there was a change in government in Alberta recently; there’s a federal election coming up later this year; and there will be a U.S. election next year. A lot is going on globally that could potentially affect Canada and the commercial insurance business.

cu | What advice do you have for brokers selling commercial lines?

Not surprisingly, I think one of the biggest opportunities is cyber liability. It’s an often-misunderstood exposure in terms of what exactly the exposures are and what the policies cover. Many brokers say to us: “My client doesn’t have a cyber exposure.” But I think the word ‘cyber’ doesn’t do the product justice. Everybody associates cyber with the internet; we see it as a potential data breach that can come in various forms, putting every company at risk. For example, let’s say a file with private information is left in a person’s vehicle. If the vehicle gets stolen with that file in the car, that is a data breach that doesn’t involve the internet. If brokers can give their clients a complete picture of the various ‘cyber’ exposures, and if they can help clients choose from among all of the coverages available for those exposures, that’s a big opportunity for brokers to set themselves apart. They can win clients by being a trusted advisor.

cu | What trends are you seeing in cyber?

We are starting to see a bit of a shift in the types of claims. Over the past one to two years, we’ve been seeing a lot more in terms of ransomware demands. For example, a company with 200 employees experiences a system shutdown; they can’t do anything until they pay bitcoin to get the system unlocked. Having the proper coverage with the right carrier can address that. Depending on the coverage, the carrier could pay for the ransomware demand, the system restoration costs and first-party expenses. Brokers will know what coverages are available to their clients.

cu | How does cyber coverage mix or not mix with CGL policies?

A CGL policy is a commercial general liability policy, not a cyber general liability policy. The CGL policy is not designed to pick up cyber exposures. If you have cyber exposures, you should buy a cyber liability policy. It provides third-party coverage for liability in addition to first-party coverage for expenses related to ransomware, system restoration costs and business interruption. Our advice is that if a broker’s client has a specific concern, buy a policy that’s designed for that specific exposure rather than just crossing your fingers and hoping the CGL policy will respond. The CGL won’t provide the same breadth of coverage that you can get in a standalone cyber product.

cu | We’ve heard the surety line is hardening. What’s happening there?

Actually, I don’t think the surety market is hardening. It might not be softening, but I don’t think it’s hardening. In my view, the surety market is relatively stable. If anything might lead some to believe there’s a hardening, it’s because of some fairly notable, large construction failures over the last little while. However, I don’t think that’s really had a significant impact on terms and conditions offered in the industry. Certainly, I don’t think it’s been that influential here in Canada in terms of behaviour of surety underwriters.

cu | Are you looking at moving into any new lines of business?

As we move forward, it’s really about looking for ways to expand our capacity and appetite within our existing lines of business. If we look at new lines of business, they will be adjacent to lines of business where we are already. Over time, we’re hoping to leverage the capabilities of Trisura Group Ltd., our parent company, which went public two years ago and is trading on the TSX. Trisura Group Ltd. has two other subsidiaries: 1) Trisura Specialty is our U.S. affiliate, focused on excess and surplus business, which resembles our risk solutions business; and 2) Trisura International is a reinsurance arm in Barbados.

Keeping up with Technology: The Importance of Cyber Insurance

Keeping up with Technology: The Importance of Cyber Insurance

By Sara Ametrano

 

The more we rely on technology in both our professional and personal lives, the more at risk we, as individuals and companies, are to be targeted by hackers.

Cyber-attacks can come in a variety of forms and steal all kinds of information if successful. Through panel discussions and presentations, April’s NetDiligence conference explored what the evolving nature of cyber can mean for the specialty insurance industry.

A peril:

When cyber coverage first emerged, it centered around liability. As time passed, the cyber risk area expanded, and it included possible scenarios such as social engineering and extortion. And today, clients are at a higher risk than ever before.

Where property and casualty policies are created based on hundreds of years’ worth of information, cyber threats are new in comparison. Creating a sustainable cyber policy plan is proving to be a challenge for underwriters today due to the lack of data available and the ever-evolving nature of the industry.

Ransomware:

One of the cyber areas seeing an increase in attack frequency and severity is ransomware. Beazley Breach Response Services reported that, in 2018, average ransomware demands were $116,000, compared to $15,000 just the year before. The report also revealed that the main targets of ransomware attacks are small to medium-sized business, absorbing 71% of the crimes.

These numbers stress the importance of the need of expertise in the field. Hackers have sharpened their skills to learn their target’s financial position so that they may determine the sum they will demand.

Silent cyber:

Where standalone cyber coverage does not exist, cyber and data breaches may fall under other policies, unbeknownst to insurers. This is what the industry refers to as “silent cyber.” Companies might not take these types of exposures into consideration, which can potentially expose their other policies that do not specifically exclude cyber/data breaches. At a glance, only 10% of silent cyber situations are clearly priced and defined, 40% have definitions but are not priced and the remaining 50% are neither defined nor priced.

So, now what?

The growing nature of technology and lack of data surrounding cyber makes it difficult to create a plan in the event an attack occurs. The conference provided tips on how to mitigate risk and minimize the confusion non-affirmative risk management can bring:

  • Analyze policy language and claims;
  • Collaborate with ethical hackers (the good guys) to better understand the motives behind these attacks and how they might appear in different scenarios;
  • Continue to update policy wording as need be.

 

 

If you have any questions or would like to request a quote, please contact Trisura’s underwriting specialists.

How Trisura Guarantee tries to “wow” brokers and customers

How Trisura Guarantee tries to “wow” brokers and customers

This article was originally published by Canadian Underwriter on March 28th, 2019

Read the original article here.

Author: Jason Contant

 

Offering consistency and going back to basics are just two of the ways Trisura Guarantee Insurance Company tries to stay one step ahead of the competition.

Basic things like responding promptly to brokers’ inquiries can make a significant difference, suggested Richard Grant, senior vice president of specialty insurance solutions with Trisura. Underwriting consistency also plays a key role. Other insurers may “write a class of business today, then in a year they are out of the business and then five years later, they’re back in the business,” Grant said in an interview Tuesday. “Trisura strives to be a consistent, stable underwriter that brokers can rely on.

Richard Grant interview with Canadian Underwriter“If we can make our brokers look good in their client’s eyes, that broker is going to remember Trisura, and we hope it will lead to their next piece of business being placed with us,” he said. “We encourage our underwriters to take pride in everything they do, take ownership in what they do and consistently deliver amazing service.”

This is also where one of Trisura’s values – having an entrepreneurial spirit – comes into play. To Grant, that means taking ownership, creating results and caring deeply about the overall success of the company. “We built the company from scratch by providing a step-above service and assisting our broker customers – solving their problems and helping them win business,” he said. “If our brokers are successful and we are part of that, we too will be successful.”

So, how does a smaller company like Trisura compete against some of the international behemoths and win? “We focus on wowing our brokers and their customers by providing that great service and coupling it with finding solutions for their problems with our creative underwriting expertise.”

Staff buy-in and passion is crucial. “Love what you do, and if you don’t love it, find what you do love,” Grant advised. The fortunate part of the insurance industry, he said, is that there are jobs that everyone can fall in love with – from actuarial number crunchers to front-line sales people.

“There is a job for anyone and everyone in the insurance industry. You just have to find what makes you tick and go after it.”

Is your business protected against fraud?

Is your business protected against fraud?

By Sara Ametrano

 

Fraud isn’t a crime that only targets individuals. Some scammers set their sights on businesses. Is yours prepared for a potential attack?

Is your business protected against fraud?As technology continues to evolve and our reliance on it grows, so does our vulnerability to being hacked. In fact, the FBI reports that there are roughly 4000 cyber-attack attempts in the US every day.

On a global scale, 2018 saw the creation of 245 million new viruses, with over 680,000 created each day. The Ponemom Institute reported that 54 per cent of companies experienced one or more successful attack last year. The year before, the Canadian economy took a hit of 3.1 billion, as recorded by the Canadian Chamber of Commerce.

To truly grasp the magnitude of cyber fraud, Trisura Guarantee spoke with IT Weapons’ director of marketing and communications, Jeremy MacBean.

We asked MacBean what the most common error leading to these costly attacks is. “It’s in between the keyboard and chair – the people,” he revealed. “User awareness is the primary threat vector. That represents the biggest risks. It’s safe to say the majority of cyber-attacks begin with people clicking things they shouldn’t.”

Let’s take a look at some of the main types of scams that can impact businesses:

 

CEO scams:

Who’s at risk? Employees who work closely with a CEO or whose jobs include financial responsibilities are most at risk.

In this type of scam, someone is impersonating the CEO through email. These messages typically have a sense of urgency to them and are labelled “confidential.”

A CEO scam can cost businesses anywhere from tens of thousands to millions of dollars.

 

Business scams:

Who’s at risk? Company size doesn’t matter; any organization can find itself on the receiving end of a potential scam.

For these scams, there are a few different approaches the fraudster can take.

Directory: Here, the attacker sends your company a proposal for an advertising opportunity. First, the fraudster gathers the details needed to execute the crime. Then, he or she sends an invoice to the accounting department, who are unaware that the service was never approved.

Health and safety products: In this type of scam, you may receive a telephone call from the scammer. He or she impersonates a government official, informing you to quickly update your first-aid kits and health and safety training.

Office supplies: For this scam, the attacker will send over items the company didn’t order and then bill the business for them.

 

Phishing and smishing scams:

Who’s at risk? All employees. Phishing emails and smishing text messages appear to be sent from an authorized organization. They often use a similar tone and the logo of organizations you trust to trick you into providing personal information.

Fraud is an ongoing issue with new cyber viruses created and spreading daily, and different angles for attack. MacBean offers some helpful tips for individuals and businesses to protect themselves and their company as much as possible:

 

Individual:
  • Identifying the sender of an email is critical. To do this, hover your mouse over an email or URL to see what it links to;
  • Think before you click;
  • Do not click any attachments;
  • Installing antivirus and antimalware can help pre-scan.
Businesses:
  • Regular user awareness training;
  • Regularly reminding staff to be vigilant;
  • Regular training and possibly issuing a test phishing email quarterly or bi-annually.

 

To learn more about protecting your business against cyber fraud, click here.