Five ways to reduce your cyber insurance premiums

Issue 6 2023 Security Services & Risk Management, News & Events

With the global costs of cybercrime expected to soar to $13 trillion within the next five years, cyber insurance is booming as organisations try to mitigate the risk of financial losses. Globally, the cyber insurance market is now worth around $17 billion and is expected to grow by over 26% a year to top $84.62 billion by 2030.

“Spiking rates of cybercrime and ever higher ransom demands have increased the risks of insurers having to make massive pay-outs,” notes Tony Walt, co-founder and Director of Cyber Security Software House Port443.

“As a result, insurers have become more stringent about the minimum security related requirements, and cyber insurance premiums are increasing. In the US alone, premiums rose by over 120% between 2020 and 2022,” he says. “Rising premiums simply add to the burden of organisations already grappling with economic headwinds and increasing risk. The good news is that many insurers now offer discounts on insurance premiums to customers who take steps to reduce their cyber risk and improve their security posture.”

Walt says local insurers reduce premiums for customers adopting these cybersecurity best practices:

1. Keep security controls up to date: ‘Set-and-forget’ is not enough to stay ahead of cyber risk. Organisations should maintain visibility and control across their security environment and should use automation to ensure controls are regularly validated, patched and updated.

2. Use encryption and Wi-Fi Protected Access (WPA): Encryption and secured access reduce the risk of data exposure or loss and strengthens compliance with legislation such as PoPIA. This, in turn, reduces your risk of having to pay a ransom, incurring penalties, or being targeted in lawsuits.

3. Use multi-factor authentication: “Multi-factor authentication goes a long way in addressing the ongoing challenge of weak or vulnerable passwords and ensures that only authorised users can access your network. This greatly reduces your exposure, so insurers feel comfortable reducing your premiums,” says Walt.

4. Have secure backups: Secure, regular and trusted backups of critical data is crucial to build business resilience and support continuity. “To insurers, this means you are at a lower risk of claiming for lost production or business hours in the event of a cyberattack, given the ability to recover as a result of these backups.”

5. Have clear security policies, incident response processes and implement training and awareness programmes: Humans are the weakest link in cyber defence, with human error accounting for the bulk of cyber breaches. Clear and up-to-date cyber security policies and incident response plans must be drafted, implemented, tested and made readily available to all staff, and ongoing training and awareness programmes must be implemented. This could significantly reduce your risk profile and reduce your risk for cyber insurers.

Walt concludes, “Reducing your premiums is just one way to address the costs of cyber risk. The biggest costs associated with cybercrime are the losses suffered in ransoms, downtime, fines, legal costs and reputational damage. Applying cyber security best practices could help organisations avoid those costs altogether.”

Examples of discounts on premiums:

Share this article:
Share via emailShare via LinkedInPrint this page

Further reading:

More than just a criminal record check
iFacts Security Services & Risk Management
When it comes to human-related risks, organisations and their most senior leaders focus on a narrow set of workforce risks, the potential risks that human workers pose to the business.

Tech developments lead hologram growth in 2024
News & Events Security Services & Risk Management
Micro-lenses, micro-mirrors and plasmonics are among the rapidly-emerging optical devices that have evolved on the back of holographic and diffractive technologies, and are seen as part of the natural evolution of optical science by R&D teams.

Are you leaving money on the table?
Editor's Choice Security Services & Risk Management
How many customers have you helped since starting your business? Where does most of your new business come from? If the answer is not from your database’s existing customers, you might have a problem.

QR code vulnerabilities: new techniques
Information Security News & Events
SecurityHQ analysts have recently observed a significant increase in Business Email Compromise (BEC), regarding phishing attacks containing QR codes (now called Quishing) and captchas for credentials harvesting.

Digital identity verification checks to pass 70 billion in 2024
Access Control & Identity Management News & Events
A new study from Juniper Research has found that the number of digital identity verification checks will surpass 70 billion in 2024, growing 16% on the previous year’s number of 61 billion.

Cisco collaborates with DCDT for Digital Acceleration Program in SA
Editor's Choice News & Events IoT & Automation
Cisco signed a Memorandum of Understanding (MoU) with South Africa’s Department of Communications and Digital Technology (DCDT) to help further develop and strengthen the country’s digital economy through digital skills and talent development.

The business value of ChatGPT
Security Services & Risk Management Risk Management & Resilience
Transparency, policy and integrity. It is critical for organisations to have a line of sight into processes and procedures that clearly define employee use cases when it comes to ChatGPT, says Lizaan Lewis, Head of the Legal Department at Altron Systems Integration.

BMS for smaller businesses
Security Services & Risk Management Products & Solutions Risk Management & Resilience
Small businesses can also benefit from tailored energy management solutions just like large corporations. Effective energy management is essential for more sustainable and efficient operations.

Kidnapping for ransom
News & Events Security Services & Risk Management Risk Management & Resilience
There has been an 8,6% increase in reported kidnapping cases in South Africa compared to last year, with 3 854 cases reported between April and June this year, leaving ordinary South Africans increasingly vulnerable.

BCX launches Africa Local Public Cloud
Editor's Choice News & Events Infrastructure
BCX, a digital systems integrator in South Africa, announced the launch of its Africa Local Public (ALP) Cloud service, which marks a significant stride in BCX's mission to deliver innovative technology solutions to businesses across the continent.