scholarly journals Legal problems of insurance protection against cyber risks in space activities

2021 ◽  
pp. 268-276
Author(s):  
Nataliia Krasilich
Keyword(s):  
State Regulation ◽  
Cyber Attacks ◽  
Insurance Companies ◽  
Cyber Insurance ◽  
Insurance Contracts ◽  
Cyber Threats ◽  
Risk Insurance ◽  
Cyber Risk ◽  
Space Activities ◽  
Insured Event

General global trends in space activities are largely related to the need to protect space information technology from possible cyber threats. The issue of cybersecurity in space activities needs to be thoroughly studied and resolved, as the current state of space activities and existing mechanisms of international and state regulation do not provide a sufficient solution. Disruption of the process of receiving and exchanging information through space information systems can lead to significant consequences. The growing number of cyber threats is becoming more common and destructive. Therefore, the assessment of cyber vulnerabilities in space systems is an important task that must be addressed both at the stage of creation and development, and in the operation of such systems. This, in turn, requires the availability of tools to address the above tasks and qualified personnel. One of the legal ways to protect against the negative effects of cyber threats, including in the field of space activities, may be cyber risk insurance, as a financial and legal mechanism for compensation, loss of losses caused by cyber attacks. In Ukraine, cyber insurance is in its infancy and needs to develop innovative approaches to further development, taking into account the accumulated positive experience of foreign countries in this area. At the moment, insurance companies are only developing the practice of cyber risk insurance and such insurance contracts are isolated. In the current environment, as a rule, the issue of cyber risk insurance is included in comprehensive property insurance contracts, liability insurance, financial risks, which significantly limits the compensation of damages. The main difficulty in the process of indemnification under a cyber risk insurance contract is to record the fact of the insured event, the amount of damage and prove the causal link between the insured event and the claimed losses, as the amount of damage must not only be calculated but also documented. Space information technologies, which are increasingly penetrating economic and social processes, necessitate the development of a segment of cyber insurance in the field of space activities, which will provide adequate insurance protection and compensation for damages to the insured due to cyber incidents. Cyber risk insurance issues should be reflected in national legislation.

scholarly journals РОЛЬ КІБЕРСТРАХУВАННЯ В СИСТЕМІ РИЗИК-МЕНЕДЖМЕНТУ БАНКІВСЬКИХ УСТАНОВ

2020 ◽  
pp. 183-196
Author(s):  
Maksym Dubyna ◽  
Iryna Serediuk ◽  
Natalia Bilous
Keyword(s):  
Control Systems ◽  
Internal Control ◽  
Cyber Attacks ◽  
Insurance Companies ◽  
Cyber Insurance ◽  
Current Trends ◽  
Banking Institutions ◽  
Risk Insurance ◽  
Cyber Risk

Within the article, the role of cyber insurance in the development of risk management systems of banking institutions is researched, namely, the essence of this system is specified, conditions of cyber risks and their potential for threats to banking institutions are identified. Considerable attention is paid to the analysis of the consequences and actions of cyber attacks in the activities of these institutions, the essence of cyber insurance as a method of minimizing losses from such influences is studied, peculiarities of providing cyber risk insurance services by insurance companies to commercial banks are specified. In addition, current trends as for the costs of organizations to take measures to ensure their own cybersecurity and purchase of appropriate insurance products are revealed, measures to improve security of banking institutions based on improving their internal control systems and financial security are specified.

scholarly journals Cyber insurance: the current situation and prospects of development

2020 ◽  
Vol 9 (28) ◽  
pp. 65-73
Author(s):  
Petro Kurmaiev ◽  
Liudmyla Seliverstova ◽  
Olena Bondarenko ◽  
Nataliia Husarevych
Keyword(s):  
Correlation Analysis ◽  
Insurance Market ◽  
Insurance Companies ◽  
Negative Effects ◽  
Cyber Insurance ◽  
Single Standard ◽  
Business Entities ◽  
High Level ◽  
Risk Insurance ◽  
Cyber Risk

The aim of the article is to analyze current trends in the development of cyber insurance. The following methods of scientific research were used in the preparation of the article: generalization, correlation analysis, comparative analysis. The authors analyze in detail the main trends in the spread of cybercrime. The correlation analysis between the number of registered cybercrimes in a particular country and its GDP, the number of business entities, indicated the lack of correlation between the studied indicators. It states that the most common types of cybercrime are: hacking, unauthorized access, accidental exposure, insider and physical theft. The sectoral analysis of the distribution of cybercrime has revealed a decrease in the share of financial companies while increasing the share of health care companies. It is noted that cyber insurance is one of the effective preventive measures that minimize the negative effects of cybercrime intervention. The article presents segmentation of the cyber insurance market by geography and size of insurance companies. The results of the analysis showed the dominance of US companies in the cyber insurance market. It is stated that the sectoral distribution of cybersecurity policy purchasers in general follows the trends of the sectoral distribution of cybercrime. The volume of cyber insurance, expenses of insured legal entities is analyzed. The main trends in the development of cyber insurance have been identified. The factors that hold back the development of cyber risk insurance have been identified. The main ones include the following: high level of information entropy in the process of cyber risk assessment, lack of a single standard for filling insurance services in the field of cyber insurance. It is noted that in the medium term the cyber insurance market is prospective for insurance companies. This is caused by the increasing scale of cyber threats and the costs associated with cyberattacks.

scholarly journals State of the cyber insurance products within Slovenian insurance companies

2019 ◽  
Vol 7 (2) ◽  
pp. 56-68
Author(s):  
Tina Kavcic ◽  
Boštjan Delak
Keyword(s):  
Risk Mitigation ◽  
The United States ◽  
Cyber Attacks ◽  
Insurance Companies ◽  
Technology Infrastructure ◽  
Information Technology Infrastructure ◽  
Cyber Insurance ◽  
Baltic Countries ◽  
The Baltic ◽  
Cyber Risk

With the growing prevalence of cyber threats and cyber attacks enterprises have to manage their cyber risks. There are several risk strategies for cyber risk mitigation. One of them is to transfer the cyber risk to insurance companies through the so called “cyber insurance”. Cyber insurance is an insurance package used to protect companies and individuals from Internet risks, Internet of things risks, and risks associated with information technology infrastructure and activities. It is estimated that approximately 85% to 90% of the cyber insurance market is located in the United States while the European market is estimated to account for approximately 5% to 9%. With the exception of the Baltic countries, smaller countries have problems raising cyber risk awareness within their countries. This paper describes the results of our survey on availability of cyber insurance products in Slovenia. Results show that currently only a few insurance companies even offer cyber insurance products. On the other hand, the survey shows that regulators did not issue any guidelines to insurance companies to develop such insurance products. The aim of this paper is to raise awareness about the potential of cyber insurance products among scholars, insurance stakeholders, regulators, and also among potential clients.

Cyber Insurance as a Way of Cyber Risks Management

2019 ◽  
Vol 7 (5) ◽  
pp. 35-42
Author(s):  
Александр Суворов ◽  
Aleksandr Suvorov ◽  
Мария Матанцева ◽  
Mariya Matanceva ◽  
Евгения Плотникова ◽  
...  
Keyword(s):  
Cyber Security ◽  
Insurance Industry ◽  
Security Level ◽  
Controversial Issues ◽  
It Infrastructure ◽  
Software Products ◽  
Cyber Insurance ◽  
Risk Insurance ◽  
Commercial Organization ◽  
Cyber Risk

A review of the cyber insurance domain has been carried out with a description of classical terms from the insurance industry. Have been considered two the most comprehensive today definitions of cyber risk in authors’ opinion. A diagram of processes for cyber risk management using insurance has been presented, and the place of cyber-risk among other company’s risks has been demonstrated, i. e. the context of cyber risk among the risks of any commercial organization has been shown. A typical cyber insurance process has been described, and a scheme of cyber insurance processes has been developed. A brief description of problem areas and controversial issues in cyber insurance, with which cyber-risk insurance practices may face, has been presented, as well as a table showing at which stage of cyber-insurance the specific problems may arise. Has been provided the basic economic utility function, which formalizes decision making for agents with a different attitude to risk. Standards in cyber security, and various software products that can be used as a tool for assessing the security level of an enterprise’s IT infrastructure have been presented, and it has been demonstrated how these products can help in cyber risk assessment. Different methods used at each stage of cyber insurance have been shown.

scholarly journals Cyber Insurance Ratemaking: A Graph Mining Approach

Risks ◽  
2021 ◽  
Vol 9 (12) ◽  
pp. 224
Author(s):  
Yeftanus Antonio ◽  
Sapto Wahyu Indratno ◽  
Rinovia Simanjuntak
Keyword(s):  
Graph Mining ◽  
Risk Model ◽  
Critical Issue ◽  
Insurance Companies ◽  
Infection Rates ◽  
Network Characteristics ◽  
Cyber Insurance ◽  
Competitive Prices ◽  
Unweighted Network ◽  
Cyber Risk

Cyber insurance ratemaking (CIRM) is a procedure used to set rates (or prices) for cyber insurance products provided by insurance companies. Rate estimation is a critical issue for cyber insurance products. This problem arises because of the unavailability of actuarial data and the uncertainty of normative standards of cyber risk. Most cyber risk analyses do not consider the connection between Information Communication and Technology (ICT) sources. Recently, a cyber risk model was developed that considered the network structure. However, the analysis of this model remains limited to an unweighted network. To address this issue, we propose using a graph mining approach (GMA) to CIRM, which can be applied to obtain fair and competitive prices based on weighted network characteristics. This study differs from previous studies in that it adds the GMA to CIRM and uses communication models to explain the frequency of communications as weights in the network. We used the heterogeneous generalized susceptible-infectious-susceptible model to accommodate different infection rates. Our approach adds up to the existing method because it considers the communication frequency and GMA in CIRM. This approach results in heterogeneous premiums. Additionally, GMA can choose more active communications to reflect high communications contribution in the premiums or rates. This contribution is not found when the infection rates are the same. Based on our experimental results, it is apparent that this method can produce more reasonable and competitive prices than other methods. The prices obtained with GMA and communication factors are lower than those obtained without GMA and communication factors.

scholarly journals RISK MANAGEMENT IN THE FINANCIAL SECTOR OF UKRAINE IN THE CONTEXT OF CYBER THREATS AND POST-PANDEMIC ECONOMIC RECOVERY

2021 ◽  
pp. 19-27
Author(s):  
Nazar Demchyshak ◽  
Anastasiia Shkyria
Keyword(s):  
Risk Management ◽  
National Security ◽  
Cyber Security ◽  
Financial Sector ◽  
Cyber Attacks ◽  
Cyber Threats ◽  
The World ◽  
Cyber Threat ◽  
Security Index ◽  
Cyber Risk

Purpose. The aim of the article is substantiation of approaches of domestic and foreign scientists to risk management in the financial sector of Ukraine in the context of cyber threats and the need to ensure national security and post-pandemic economic recovery. Methodology of research. General scientific and special methods of scientific research are used in the article, in particular: induction, deduction, scientific abstraction - to reveal the essence of the concepts of "cyber threat", “cyber security" and "digitalization"; statistical and graphical methods - to assess the current situation in the field of cyber defence in the world and the national cyber security index; methods of analysis and synthesis - in substantiating the conclusions of the research. Finding. Definitions of cyber risk, approaches to its interpretation and classification were considered. The importance of cyber security in the digitalization of the national economy was argued. The Strategy of Ukrainian Financial Sector Development until 2025 is analysed. The world statistics of frequency and losses due to cyber-attacks are studied and the cyber threats that caused the greatest losses in Ukraine are identified. The analysis of Ukraine’s positions in the National Cyber Security Index 2020 is carried out. The directions of cyber threat prevention that can be useful for Ukrainian companies are substantiated. Originality. The author’s definition of the term "cyber risk" is proposed, in which special attention in focused on the effects of cyber threats. The importance of cyber risk management in the conditions of inevitability of digitalization in the financial sector of Ukraine is substantiated. Approaches to the prevention of cyber-attacks, the implementation of which is necessary for the successful digital transformation of Ukraine, are proposed. Practical value. The results of the research will contribute to the formation of an effective risk management system in the financial sector of Ukraine in terms of digitalization of the financial space and post-pandemic recovery of the national economy. Key words: national security, cyber risk, cyber threat, cyber defence, digitalization, post-pandemic recovery, fintech.

scholarly journals Statistical Indicators of Cybersecurity Development in the Context of Digital Transformation of Economy and Society

2021 ◽  
Vol 17 (3) ◽  
pp. 3-13
Author(s):  
Antonina Yerina ◽  
Ihor Honchar ◽  
Svitlana Zaiets
Keyword(s):  
Cyber Security ◽  
Communication Systems ◽  
Large Scale ◽  
Digital Transformation ◽  
Cyber Attacks ◽  
Cyber Threats ◽  
Level Of Economic Development ◽  
Information And Communication ◽  
High Level ◽  
Cyber Risk

Introduction. The scale and destructive consequences of the unlawful impact on cyberspace is a key problem of modern geopolitics, and cyber reliability is recognized as one of the most important security priorities by the subjects of international relations.Problem Statement. Monitoring of cyber incidents and anomalies in information and communication systems and prompt response to risks determined by cyber threats require the development of a system of indicators and criteria for cybersecurity assessment.Purpose. Summarize the international experience of assessing the cybersecurity, to position countries by their level of development in the global space, to identify strengths and weaknesses in cybersecurity management, and to ensure effective protection of cyberspace at the national level.Materials and Methods. Used the component indices of the international rankings characterizing the potential of the digital economy (ICT IDI, NRI, EGDI) and the participation of countries in the field of cybersecurity(GCI and NCSI).Results. It has been argued that cybersecurity ratings play the role of a kind of identifier of the relative advantages and vulnerabilities of the national cyber strategies, and indicate the need for their review in order tostrengthen protection against cyber-attacks and improve the cyber risk management system. In countries with a high level of economic development, which is largely based on the contribution of IT technologies to the national production, the cybersecurity potential is significantly higher, regardless of geolocation. The discovered correlation between GCI, information society development indices (IDI, NRI, EGDI) and GDPper capita confirms that the digital transformation of the economy and society acts as a key driver of economicdevelopment if the information- and cyber-security are assured only. The best practices are highlighted, andcritically weak segments of the national cybersecurity are identified.Conclusions. Using the NCSI indicators, the preparedness of Georgia and Ukraine to prevent the implementation of fundamental cyber threats and to manage cyber incidents and large-scale cyber crises is assessed.

scholarly journals ROADMAP FOR THE INTRODUCTION OF CYBER INSURANCE IN UKRAINE

2021 ◽  
pp. 217-226
Author(s):  
N.V. Prykaziuk ◽  
◽  
L.S. Gumenyuk ◽  
Keyword(s):  
Cyber Security ◽  
Customer Orientation ◽  
Cyber Attacks ◽  
Insurance Market ◽  
Insurance Companies ◽  
Insurance Markets ◽  
Cyber Insurance ◽  
Current State ◽  
Mechanism Of Interaction ◽  
Goals And Objectives

The article examines the process of implementing cyber insurance in the world and proposes a Roadmap for implementation in Ukraine. The key goals and objectives facing the insurance market of Ukraine and the regulator in order to achieve this goal are considered. Approximate deadlines for the necessary measures to prepare for the introduction of cyber insurance in the Ukrainian economy are outlined. The key features of regulations in the field of cyber security in the EU and Australia are highlighted and ways to adapt them in Ukraine are proposed. Promising means to increase the security of individuals and legal entities in the digital space on the example of the mechanism of interaction between insurers and expert organizations in Australia. The main vectors of cooperation between insurance companies and expert organizations in the field of cyber security in the Ukrainian and global insurance markets are listed. A system of interaction between the subjects of cyber-insurance relations with the positioning of the insured in the center of relations as a key participant in insurance has been developed, which proves the high customer orientation of this area of ​​insurance business. The current problems of the Ukrainian insurance market are substantiated and the ways of their solution through the mechanism of cyber insurance implementation are offered: modeling of the mechanism of estimation of losses from cyber attacks, monitoring of the current state of insurers, development of ways to minimize cyber incidents. The dynamics of cyber incidents in 2020 is analyzed and the correlation between the occurrence of global lockdowns caused by COVID-19 and the growth in the number of cyber attacks is revealed. Based on the analysis, it is proved that the introduction of cyber insurance in Ukraine is a necessary tool to protect all participants in insurance relations from cyber risks and for the development of the insurance market as a whole.

Data Breach, Privacy, and Cyber Insurance: How Insurance Companies Act as “Compliance Managers” for Businesses

2018 ◽  
Vol 43 (02) ◽  
pp. 417-440 ◽  
Author(s):  
Shauhin A. Talesh
Keyword(s):  
Risk Management ◽  
Cyber Security ◽  
Participant Observation ◽  
Legal Regulation ◽  
Insurance Companies ◽  
Organizational Sociology ◽  
Cyber Insurance ◽  
Privacy Laws ◽  
Cyber Risk ◽  
Management Services

While data theft and cyber risk are major threats facing organizations, existing research suggests that most organizations do not have sufficient protection to prevent data breaches, deal with notification responsibilities, and comply with privacy laws. This article explores how insurance companies play a critical, yet unrecognized, role in assisting organizations in complying with privacy laws and dealing with cyber theft. My analysis draws from and contributes to two literatures on organizational compliance: new institutional organizational sociology studies of how organizations respond to legal regulation and sociolegal insurance scholars' research on how institutions govern through risk. Through participant observation at conferences, interviews, and content analysis of insurer manuals and risk management services, my study highlights how insurers act as compliance managers for organizations dealing with cyber security threats. Well beyond pooling and transferring risk, insurance companies offer cyber insurance and unique risk management services that influence the ways organizations comply with privacy laws.

scholarly journals Going digital: case study of an Italian insurance company

2020 ◽  
Vol ahead-of-print (ahead-of-print) ◽  
Author(s):  
Galena Pisoni
Keyword(s):  
Value Chain ◽  
Design Thinking ◽  
New Technologies ◽  
Lessons Learned ◽  
Insurance Companies ◽  
Insurance Company ◽  
Content Type ◽  
Cyber Insurance ◽  
Insurance Policies ◽  
Cyber Risk

Purpose This paper aims to present the case of an Italian SME in the domain of insurance and how it approached its own digital transformation. Together with the founders of the SME, the author investigated the digital trends the company should adopt and identified where to intervene in the value chain of the company with new technologies available in the market. The research was focused on the following three sub-domains: a strategy for adoption of innovative digital solutions to improve the everyday operations of the company, platform connecting the company with the customers and analysis of cyber insurance policies to include in the portfolio of the company. Design/methodology/approach For the part on strategy for adoption of innovative digital solutions, the author performed literature review; for the part in which the study ideates new solution to better connect the company with the customers, the author relied on design thinking, creative facilitation and prototyping; and for the part on cyber insurance policies to include the portfolio, the author relied on data available from other insurance companies the SME collaborates with. Findings This paper presented the analysis on how an insurance SME can embrace digital innovation (via internal innovation, buying from startups, partnering with startups or investing in startups), how an SME can do internal innovation and come up with a simple tool to bring closer the insurers and their customers and types of new cyber risk policies to include in the portfolio to respond to the growing demand for cyber risk insurance. This paper provides useful insights and lessons learned from companies of similar size in the domain of insurance and discusses future extensions of inquiry. Originality/value Big insurance companies and incumbent for their digitization efforts rely on the freshly created InsurTechs wave of companies. In this paper, the author analyzes what small- and medium-sized insurance enterprises can do in this respect and showcases the approach an Italian SME took in this direction.

Sign in / Sign up

Export Citation Format

Share Document