Seminars & Trainings

Seminar on “Cyber- Security, Crime & Insurance: Current Scenario and Way Forward” – 2017

Organised by

Insurance Foundation of India (IFI) in Association with PHD Chamber of Commerce and Industry

Duration

1 Day

Date

16 Jun 2017

Timing

09:30 A.M. to 04.45 P.M.

Venue

PHD Chamber of Commerce and Industry, PHD House, 4/2, Siri Institutional Area, August Kranti Marg, New Delhi- 110016 (Nearest Metro station- Hauz Khas)

Why need for Specialized Seminar on Cyber- Security, Crime & Insurance: Current Scenario and Way Forward?

Advances in information and communications technologies have revolutionised government scientific, educational and commercial infrastructures. The IT infrastructure has become integral part of the critical infrastructure which supports national capabilities such as power grids, emergency communication systems, financial systems, defense systems and air traffic control networks. The operational stability and security of critical information infrastructure is vital for economic security of the country for individuals, organizations and systems across global networks for trade and economic requirements.

Increasing complexity of IT systems and networks will mount security challenges for both providers and consumers. The increasing interconnectivity and accessibility (and consequently risk) to computer based systems that are critical to country’s economy.

Every aspect of today’s Economic Activity, Government Activity, and Social Media, use of Computer, Mobile Phone, ATM, and Net Banking is dependent on Internet. You do not know virus/ hacking can have huge impact on your business/ personal internet or computer. Cyber Risks cannot be ignored and it is necessary that we invest on Cyber Security.

Next step for any organization is to go in for Cyber Insurance so that losses to own organization or customers can be insured. According to Asia insurance Review “Cybercriminals remain ahead in this cat and mouse game against the defenders and the list of threats will only grow. How can Insurers protect themselves and at the same time provide a safety net for their clients? This is a dynamic role that Insurers must now embrace and juggle”.

Cyber Insurance Seminar is intended to be serious discussion among Stake holders comprising of Corporate, Government, Police, Cyber Security Experts, Insurers to think in the direction on what needs to be done to avoid huge losses, which can affect even the survival of the organization and can impact shareholders wealth or market capitalization.

Scope/ Coverage and Nature of Coverage under Cyber Risk Insurance

It is intended to have a coverage for first-party and third-party liability coverage to organization when cyber-risk materializes and or cyber security controls at organization fails.

The cyber insurance should cover property, theft and liability as represented in below section:

A. Property and Theft:

  • Destruction of software system and network
  • Unrecoverable Loss of information of organization’s stored data
  • Recovery from malware or other malicious codes
  • Business interruption due to cyber-incident (Loss of net profit as a result of a material interruption to the insured’s network)
  • Denial of Service
  • Information Theft – Loss of control of customer’s data/record
  • Breach of intellectual property
  • Cyber Extortion and Cyber espionage
  • Losses due to cyber-terrorist acts
  • Harm to electronic media or data contents
  • Terrorism/ War exclusion with carve back for Cyber terrorism

B. Liability:

  • Network Security
  • Private confidentiality breach/Data Liability
    1. Loss of personal information
    2. Loss of corporate information
    3. outsourcing
  • Reputational damage
    1. Repair of the organization’s & individual’s reputation
    2. Notification and Monitoring
  • Business continuity/supply chain disruptions
  • Crisis management and response to data theft (includes costs of administrative expenses i.e. forensic investigations, penalties, regulatory and governmental fines)
  • Cost of repairing, replacing and updating computer systems

C. Limit of Liability:

Aggregate Limit of Liability per Policy Period for all Loss of all insured under all insurance covers to be combined.

Cyber Crime – Most common forms:

  • Hacking – Unauthorised attempts to bypass the security mechanism of an information system or network.
  • Data theft (using flash/pen drives, digital cameras).
  • Virus or worms, Malware or Trojan horses.
  • Identity Theft
  • E- mail spoofing
  • Botnets and Zombies
  • Scareware

Cyber Security Flow:

  • Back Up and Recovery – There should be a policy in existence to ensure that regular back up of the critical data are taken and kept on-site and off-site to ensure its availability whenever required.
  • Outsourcing – Risks related to integrity, availability and confidentiality of data need to be addressed
  • Change Management controls – Only authorised and approved changes are made and proper documentation exists for each area of the system to support future modifications.
  • System Security Issues
  • Data Migration Issues

Cyber Liability Insurance:

Cyber liability refers to an IT firm’s liability when it is responsible for the security and privacy of a client’s data stored on the IT firm’s servers. Cyber liability insurance policies typically include coverage for:

  • Denial of service attacks or inability to access websites or systems
  • Unauthorized access to, use of, or tampering with data
  • Disclosure of confidential data (invasion of privacy)
  • Loss of data or digital assets (malicious or accidental)
  • Introduction of malicious code or viruses
  • Cyber extortion or terrorism threats
  • Personal media injury (defamation, libel, or slander) from electronic content
  • Regulatory action, notification, or defense expenses
  • Crisis management and public relations expenses
  • Data or system restoration
  • Business interruption expenses

Who should buy Cyber Risk Insurance policy?:

Following is the list of companies that must have Cyber Risk Insurance policy. This is just an indicative list and not exhaustive.

  • Information Technology Companies: Software, Data Centres, ITeS, etc.
  • Retailers: E-commerce & Brick and Mortar
  • Financial Services
  • Services
  • Health & Pharmaceuticals, etc.

What are the Risks covered in Cyber Risk Insurance policy?:

Following are some of the most common Risks covered in Cyber Risk Insurance policy.

  • Legal Liability to others for Privacy Breaches or Computer Security Breaches
  • Loss to Data/Information
  • Loss of Revenue due to cyber attack
  • Public Relation Expenses
  • Regulatory Actions or Scrutiny expenses
  • Incidental Expenses to respond to Cyber Attack
  • Cyber Extortion Expenses

What are the Exclusions under Cyber Risk Insurance policy?:

Some of the exclusions under this policy are

  • Government Entity or Public Authority
  • Specific Network Interruption Condition

Topics to be covered:

  • Need for Cyber Insurance for insurance related stakeholders
  • Cyber Laws/ Regulatory Framework- Legal Issues
  • Points to be kept in mind
  • Cyber Laws/ Regulatory Framework- Legal Issues
  • Cyber Insurance Policy
  • Software Implementation for Cyber Protection
  • Security Incident – Early Warning and Response
  • Security Policy, Compliance and Assurance.

Objective of the Conference:

The conference will feature and address the following issues:

  • To provide a platform for open house discussion between Corporates/ Government and stakeholders
  • Software Companies ready to provide support for Cyber Security?
  • Is suitable insurance available for cyber risk coverage?

Who Should Attend the Programme (Target Participants)?

This is a good opportunity for:

  • Insurance Companies (CEOs/CIOs/CTOs & COOs)
  • Reinsurance Companies (CEOs/CIOs/CTOs & COOs)
  • Insurance/ Reinsurance Professionals dealing with Technology Concerns
  • Insurance Brokerage Firms
  • Corporates
  • Banks/ Financial Firms
  • Cyber Security Firms
  • Data Management Professionals
  • Technology Experts & Other IT Service Providers
  • eCommerce Companies
  • Law Firms
  • Compliance Personnel and In-House Lawyers
  • Police Officials
  • Chartered Accountants
  • Members from Chambers of Commerce and Industry
  • Associations Representing Various Segments Connected with this industry

What you can expect from the Programme?

Complete learning of cyber security measures/ protection & choosing best Cyber Insurance Policy for your business.

Some Key Take away for Various Stake Holders will be:

  • Understanding of Cyber Security
  • Indian Perspective of Cyber Liability Insurance
  • Legal Provisions/ Legal framework
  • Possible Triggers
  • Cyber Risk Insurance policy
  • Cyber Security in India
  • Data Security and Cybercrime in India

Eminent Speakers addressing this conference will be from:

  • Insurance Industry
  • Reinsurance Company
  • Police Officials
  • Law Firms/ Cyber Laws/ Regulatory Framework
  • IT/ Cyber Space
  • Insurance Brokerage Firms
  • Experts on Cyber Insurance

Names are being finalized and will be shared soon.

Delegate Fee:

Participation: Rs. 3000/- per individual participant.
Group participation fee (team of 5 persons): Rs.2500/- each.
Group participation fee (team of 10 persons and above): Rs.2000/- each.

Contact Details

Ms. Shveta Kaushal

Programme Coordinator, Insurance Foundation of India Om Plaza, 430/7, 1st Floor, Sant Nagar, East of Kailash, New Delhi – 110065

Mobile: 7678689961

Email: vp@ifingo.org

Get IFI Updates.Subscribe with us!