Advertise Here
Icon

Directory

IconAccounting & Tax
IconAccreditation Bodies
IconActuaries
IconAssociations and Institutes
IconAuditors
IconBBBEE Consulting and Verification Agencies
IconBusiness Process Management
IconBusiness Process Outsourcing
IconCompany Secretarial Services
IconCompare Medical Scheme Benefits
IconCompliance
IconConsumer Protection
IconCorporate Governance
IconCredit Bureaus
IconDebit Order Collection Facilities
IconEducation and Training
IconEmergency Medical Rescue
IconExpatriate Cover
IconFAIS
IconHealthcare Consultants
IconHuman Resources
IconInformation Technology and Software Partners
IconLegal
IconManaged Healthcare Service Providers
IconMedical Aid Administrators
IconMedical Aid Schemes
IconMedical Schemes Trustees Liability Insurance
IconMedical Service Providers
IconOmbud
IconPolicy Administration
IconPublications
IconRegulatory Authorities
IconSurveys & Research
IconTraining Courses & Workshops
IconWellness Programs
Image
  Subscribe To »

The Imminent Reality of Cyberattacks for Business

Published

2019

Tue

16

Jul

No longer an if, but when a business will experience a cyber attack

Participants in Aon's 2019 Global Risk Management Survey ranked cyberattacks and data breaches as #6 in the top 10 risks facing organisations today. The risk entered the Top 10 list for the first time (at #9) in 2015 and is projected to go from #6 to #3 in the next three years. Startling figures have changed the public perception of cyberattacks:

 

 

“When we break it down by industry; banks, retail, healthcare, insurance and technology companies consider cyberattacks or data breaches the top risk. These sectors rely heavily on digital advances to improve operational efficiency and increase their competitiveness. They were also the targets for the majority of mega cyberattacks in 2018,” says Zamani Ngidi, Principal Cyber Risk Consultant at Aon South Africa

 

Why have cyberattacks and data breaches become so rampant?

Aon's 2019 Cyber Security Risk Report highlights some of the vulnerabilities:

  1. The rapid expansion of operational data from mobile and edge devices, along with growing reliance on third-party—and sometimes even fourth-party—vendors and service providers, are heightening cyber risks. 
  2. The combination of faster networks and vulnerable devices - Internet of Things (IoT) and the forthcoming transition to 5G - opens more doors to destructive threats.
  3. Employees remain one of the most common causes of breaches. In a 2018 Aon survey, 53% of respondents said their companies experienced an insider-related attack within the previous year. When an employee of a large healthcare company inadvertently opened a phishing email, nearly 80 million patient records on his system ended up in the hands of a foreign government.
  4. As the number of merger and acquisition deals rises (M&A deal value topped US$4 trillion in 2018), companies with a flawless approach to cyber security might have acquired a target that lacks cyber protection measures.
  5. Organised crime is now using former intelligence members for more sophisticated attacks, while state actors are both broadening the nature of their attacks and increasing their frequency.
  6. Lastly, an ever-changing set of regulations from governments around the world compounds the difficulties of managing cyber risks.

 

“Despite the fact that the breadth and scope of cyber coverage has increased substantially since 2017, only 27% of participants in Aon's 2019 Global Risk Management Survey from the Middle East and Africa region purchased cyber insurance,” says Zamani.

 

Top industries purchasing cyber insurance are as follows:

  • Investment and Finance – 83%
  • Healthcare – 81%
  • Retail Trade – 78%
  • Banking – 75%
  • Insurance – 73%

 

Given that technology continues to impact every job function, from the CEO to the entry-level intern, Zamani believes that it is imperative for organisations to establish a comprehensive approach to cyber risk. “Businesses must continually assess their overall cyber risk profile, remediate where recommended and proactively manage their defences.”

 

Cyber risk assessment

The use of cyber risk assessments has risen 16% since 2015. However, only 59% apply any formal process to identify and evaluate cyber risks. “This means that a significant number of boards and executives are making strategic risk management decisions with little to no data-driven insights when they tackle one of the most rapidly evolving risks,” explains Zamani.

 

Of those risk management teams that are involved in cyber risk assessment activities, there has been a positive increase in the application of quantification techniques to 40%, up from 23% in 2017, to evaluate the financial exposures from cyber risks.

 

Despite the increase, the majority of risk assessments are still not using any financial metrics to communicate the materiality of cyber exposure. The outputs from these assessments are not presented in a way that senior executives can understand their financial risk appetite, nor does it support data-informed capital allocation decision-making.

 

“Although there appears to be a positive correlation between the upward trending of risk assessments and quantitative techniques and the increase in captive utilisation (from 8% in 2015 to 16% in 2019) and insurance procurement (21% in 2017 to 54% in 2019), risk management teams need to be more actively involved in bridging the gap between technical cyber risk assessment activity and the enterprise risk management framework,” says Zamani.

 

It is important for risk managers to gain a better understanding of the impact of cyber risk.  “The risk that cyber-crime poses affect all companies, big and small.  This is where the insights and guidance from an expert broker that provides a holistic offering of advisory and security services is invaluable to enable organisations to anticipate and effectively manage their exposures,” Zamani concludes. 

 
Source: CONNY MANASO TS COMMUNICATIONS
 
« Back to previous page Print this page » |
 

Breaking News »

Allianz Risk Barometer 2020: Business interruption top peril for companies in Africa and the Middle East

9th annual survey on top business risks attracts record participation of 2,700+ experts from over 100 countries Business interruption ranks as the top risk in Africa and the Middle East and is a key challenge ...
Read More »

  

1Life highlights that growth isn’t always easy… but it’s worth it, in new brand advert

‘However you choose to grow’   Monday, 27 January 2020, 1Life, the leading direct life insurer, yesterday launched its new brand advert – ‘However you choose to grow’ – ...
Read More »

  

Cyber attackers’ home in on South African businesses

Ransomware industry flourishes in SA while business are largely unprepared for the business interruption and financial fallout of a breach   In a recent Carte Blanche episode, the investigative news ...
Read More »

  

SELECTING THE WRONG DIRECTORS FOR THE SOE AND SOC BOARDS HAS BEEN DISASTROU

By Terrance M. Booysen and peer reviewed by Jene’ Palmer CA(SA) (CGF Lead Independent Consultant)    As most South Africans eagerly awaited some reprieve from a year of constant and negative bombardment, ...
Read More »

 

More News »

Image

Investment »

Image

Life »

Image

Retirement »

Image

Short-term »

Image
Image
Image
Image
Image
Advertise Here

From The Glossary »

Icon

Gross Negligence:

Reckless action without regard to life or limb.
More Definitions »

 

Advertise

 

eZine

 

Contact IG

 

Media Pack

 

RSS Feeds

By using this website you agree to the Terms of Use.
Copyright © Insurance Gateway (Pty) Ltd 2004 - 2020. All Rights Reserved.