How is cyber security insurance managed in financial institutions; is it managed by ERM or CIO- cyber risk team?

Data Center and Cloud InfrastructureCloud
2.6k viewscircle icon4 Comments
Sort by:
Senior VP & CISO2 years ago

All insurance managed by ERM but CISO team works with them on Cyber insurance 

Lightbulb on1
Global Chief Cybersecurity Strategist & CISO in Healthcare and Biotech2 years ago

What do you mean by "managed!" The CFO in many small to mid size companies deal with the brokers to get the quotes and defend budget concerns. Legal reviews that contract terms. The CISO should be involved in the security and data architecture reviews and questions. I also give strong input to the amounts needed, additional riders e.g. AI, etc. In the end it's an Enterprise Risk Management evaluation case to evaluate what risks to self- insure, etc. Remember that contracts may require certain limits but always check to see if the next higher band is more cost effective. Cyber liability insurance also helps with reputation management, forensics, etc so many departments and leaders need to be part of the process.

Chief Information Security Officer in Healthcare and Biotech2 years ago

It depends on the organisation’s structure but for BFSI co-owned by CIO and CISO 

Director IT in Software2 years ago

Its Managed by ERM

Content you might like

Shadow IT can increase innovation—agree or disagree? Let's hear the reasons behind your answer.

Strongly agree16%

Agree70%

Disagree12%

Strongly disagree

View Results

I am looking for an EDI parser which is a light weight, SaaS and can be run as serverless (recommended) to perform EDI transaction (834, 837 etc) HIPAA validation. 
So far, I could find Edifecs, ediFabric, Stedi and IBM ITX in the market. Can anyone provide their experience or recommendation on different tools on the market that we should evaluate?

What would make cybersecurity training more enjoyable?

If it were presented in simpler language.19%

If it was more fun (i.e. gamification)60%

If it were broken into shorter courses17%

Nothing, it's boring no matter what!2%

View Results

What cloud cost optimization strategies have you found most effective in your organization? Are there specific techniques or best practices that have helped you reduce expenses without sacrificing the resources your teams need?

Which tech conference do you intend to attend in person next year or have already participated in this year, and what motivated your choice?

Read More Comments