From ransomware and data breaches to insider risks, cyber events remain significant sources of financial loss and disruption for companies of all sizes.
Reducing this risk requires understanding a company’s major business priorities, and how you would continue to deliver value to your customers, even during a serious cyber incident.
Building this concept of cyber resilience for your own company is no easy task, as it requires a coordinated effort across an organisation’s risk, cybersecurity, and financial leadership.
But in today’s world of sophisticated cyber adversaries, it is critical to ensure your organisation can take a digital hit, and survive.
Against a dynamic risk such as cyber, a “set it and forget it” approach is not sustainable as cybercriminals continue to find new ways to exploit vulnerabilities.
There are several best practices that we see proving effective, however, in narrowing cyber exposures and improving organisations’ resilience to cyber risk.
Current best practices that cyber insurance underwriters like to see, and which cyber criminals don’t, include:
Security awareness training
In cyber risk management, ironically humans are often…
