The Cyber Security Window of Opportunity

computer keyboard with a cyber security key

We’ve become a world defined by data, but that opens a new arena of risk: cyber security.

Picture this. As you drive to your office in the morning, you think of the many priorities you need to address in the day ahead. You’re eager to jump in. You sit at your desk and fire up the computer. Nothing happens. No wait, a message pops up saying that you are locked out of your computer and all your files are encrypted. You won’t regain access to your vital business records unless you pay a huge amount of money in bitcoin to some shady criminal entity.  You’re effectively out of business until you pay. And if you decide not to pay, your data will be leaked.

This is happening to businesses every day. Hacker attacks occur every 39 seconds, according to a study done by the University of Maryland, and ransom attacks are one of the fastest growing types of attacks, growing at 350% annually.

It is one of our primary jobs as insurance agents to educate our clients about the cyber security risks their businesses face and help them protect against potential losses. Many small businesses think they are at low risk for a cybercrime, but small businesses often have less sophisticated defenses, making them prime targets.

Every one of your commercial clients is exposed to cyber losses and should be offered protection from those losses through the purchase of cyber liability. Agents who don’t inform clients about all available cyber insurance options could potentially face errors and omissions exposure if businesses they represent face losses in a cyberattack. And it’s not only good protection for your clients, it’s a growth area for your agency in this this time of economic uncertainty. Cyber liability can be an opportunity to account round while protecting your customer and securing the long-term relationship.

Developing your cyber security expertise

Here’s the challenge: Every policy addressing cybercrime is different, which means that you as the agent need to educate yourself about the exposures and the different types of policies available to mitigate potential losses. The good news is that if you do your homework and grow your expertise in this area, it will give you a competitive edge in an expanding market.

Cyber liability can be helpful, but generally doesn’t go far enough. Look for policies that offer first-party as well as third party coverage.  Third party coverage is vital for data breaches, but won’t protect against ransom attacks, so your client likely would need both.  Talk to your customers to get a full understanding of the exposures that their businesses face.

Many business people do not fully comprehend what’s at stake, so you need to help your customers understand the risks and the potential consequences of leaving such exposures unaddressed. They may not understand the many details involved in addressing data breaches, ransom attacks, or other cybercrimes, so it can be helpful to talk about the many steps and expenditures that can be involved in responding to such attacks: monitoring and staying alert to threats, protecting against a breach, spotting and stopping any breach or attack that occurs, notifying proper authorities of the crime, complying with customer and public notification and remedy laws, defending against legal and tort claims, restoring business reputation, and more.

There are a lot of misconceptions that businesspeople have that can be a barrier to coverage.

  • That their business is too small and under the radar of cybercriminals. Wrong.
  • That they host their business data in the cloud, so they are passing liability to another entity. Wrong.
  • That their current business coverage will protect them in the event of an attack. Wrong.
  • That they have good security and are in control of their cyber exposure. Wrong. Security is only as strong as the weakest link – it only takes one employee to mistakenly click on a forged email to open a world of pain.
  • That it’s too costly. That’s where you come in as the agent. You need to help clients fully understand the exposure and associated potential losses; you also need to monitor the market for the best product to meet your clients’ needs. Cyber products are in a state of rapid evolution.

As the frequency of cybercrime incidents explode,  the likelihood of a business being a victim of cyber criminals increases exponentially. The opportunity for the knowledgeable agent to establish this as a competitive niche is huge but that widow will not remain open for long.

Renaissance Alliance agents and their clients have access to at Renaissance/Highland Cyber Program, powered by CFC Underwriters.  This award-winning cyber insurance and risk management program is available at exclusive member rates.

Lisa M. Johnson – Senior Vice President, Marketing Communications, Renaissance Alliance
Connect: LinkedIn

 

 Related reading on cyber security:

 

About Renaissance

Renaissance provides market access, placement services, technology and resources for independent insurance agents that want to grow their business and maximize efficiency.

More Insights

Subscribe

Start the conversation
Learn more about membership

Renaissance is a good fit for independent insurance agencies that:

NON-DISCLOSURE TERMS AND CONDITIONS

These Non-Disclosure Terms and Conditions (“Agreement”) govern the provision of information by Renaissance Alliance Insurance Services, LLC (“Renaissance”) to a prospective agency member (“Recipient”). Renaissance and Recipient Renaissance and Recipient are hereinafter referred to together as the “Parties,” and each may be referred to separately as a “Party.”

The Parties acknowledge that Renaissance may disclose to Recipient certain of Renaissance’s confidential, sensitive and/or proprietary information including, but not limited to, business, financial or technical information, in connection with the potential establishment and/or conduct of a business relationship or transaction between the Parties (the “Transaction”). In connection therewith, for good and valuable consideration, the receipt and sufficiency of which consideration are hereby acknowledged by Recipient, and as a condition of the provision of Confidential Information (as defined below) to Recipient, Recipient hereby agrees as follows:

  1. Confidential Information.Confidential Information” means any and all information provided by Renaissance to Recipient in any form, and at any time (including prior to or following the execution of this Agreement), including but not limited to any such information that (a) is related to Renaissance’s business, finances, financial information, pricing, business plans, profitability, projections, business or financial opportunities, investment strategies, other strategies, data, products, services, concepts, contacts, personnel, customers, vendors, prospects, intentions, formulas, methods, processes, practices, models, tools, computer programs, software, discoveries, inventions, know-how, negative know-how, business relationships, agreements (including this Agreement), intellectual property, trade secrets (whether or not patentable or copyrightable), trade secrets, or other confidential or proprietary information, (b) contains or is related to any communications, negotiations or proposals regarding the Transaction; (c) Recipient has either been informed, or reasonably should know, is confidential in nature; or (d) consists of or contains names, addresses or other information of any description relating to any of Renaissance’ member agencies or any of such member agencies’ customers or clients. Confidential Information shall also include any analyses, compilations, studies or other documents or materials prepared by Recipient or by any of its Representatives, that contain, rely upon, are derivative of or otherwise reflect any Confidential Information as described in the preceding sentence. The foregoing notwithstanding, Confidential Information shall not include any information which, at the time it is provided to Recipient; (i) is already known to Recipient, (ii) is then or later becomes available to the general public without violation of any requirement of confidentiality.
  1. Providing of Confidential Information. Renaissance may provide to Recipient any Confidential Information, in such manner and at such times as Renaissance may determine, to assist Recipient in evaluating, negotiating and carrying out the Transaction, but shall have no obligation to provide any, or any particular, Confidential Information to Recipient. Renaissance makes no, and disclaims any, representations or warranties regarding any Confidential Information it may provide, except as may be provided in any definitive documentation relating to a Transaction.
  1. Non-Use and Non-Disclosure; Representatives. Recipient agrees not to use any of Renaissance’s Confidential Information for any purpose other than for or in connection with the evaluation, negotiation, entering into or carrying out of a Transaction. Recipient agrees not to disclose any of Renaissance’s Confidential Information to any third party other than Recipient’s directors, officers, employees, affiliates, counsel, consultants, advisers, representatives and agents (collectively, “Representatives”) who have a reasonable need for the same in connection with the uses thereof permitted under this Agreement. Any such Representatives who are provided with any Confidential Information shall be instructed to maintain the same in confidence, and not to make any use or disclosure of the same other than as permitted under this Agreement. Recipient shall be responsible for any breach of this Agreement by any of its Representatives, to the same extent as though Recipient had committed such breach personally. Recipient agrees to use the same level of care in protecting the Confidential Information from unauthorized disclosure as it uses to protect its own confidential or proprietary information, and in any case will use no less than a commercially reasonable level of care in protecting all Confidential Information from unauthorized disclosure. The foregoing notwithstanding, Recipient shall be permitted to disclose so much of the Confidential Information as has been authorized for release by Renaissance in writing, to the persons and upon the conditions so authorized by Renaissance, in connection with the carrying out of the Transaction. Recipient shall not circumvent or seek to circumvent Renaissance’s negotiations with any third party, either by entering into discussions directly with such third party otherwise than on behalf of Renaissance, or otherwise. For purposes of this Section, each Party shall act in good faith and deal fairly with the other Party.
  1. No License; Return of Confidential Information. Recipient will not acquire any license or other rights whatsoever with respect to any of the Confidential Information by virtue of its disclosure to Recipient pursuant to this Agreement, or by virtue of any use thereof permitted hereunder. Recipient agrees to destroy or to return all Confidential Information to Renaissance, including both originals and all copies thereof (other than copies created as part of the routine backup of Recipient’s servers, or copies retained pursuant to a requirement of a governmental or regulatory authority, all of which retained copies shall be held confidential for so long as such materials are so retained), and to confirm the completion of such return or destruction to Renaissance in writing, promptly upon demand by Renaissance within the term of this Agreement. The term of this Agreement shall be for a period of five (5) years, commencing on the Effective Date set forth above. Either Party may terminate this Agreement at any time, upon written notice to the other Party, provided that the obligations of Recipient hereunder shall nevertheless survive for the period above stated, with respect to all Confidential Information provided prior to such termination.
  1. Orders Requiring Production. In the event Recipient receives a court subpoena, request for production of documents, court order or other requirement of a governmental agency to disclose any Confidential Information (a “Disclosure Requirement”), Recipient shall (unless prohibited by law) give prompt written notice to Renaissance thereof so that Renaissance may seek to challenge or limit the Disclosure Requirement. Recipient agrees to cooperate reasonably in any effort of Renaissance to limit or prevent any required disclosure of Confidential Information, provided that Recipient shall: (i) not be required to incur any expense in connection with such cooperation, and (ii) not be required to disobey any Disclosure Requirement. Recipient shall not be deemed in violation of this Agreement if it complies with any such Disclosure Requirement either after having provided Renaissance with notice thereof and a reasonable opportunity to contest the same, or if such notice is not permitted. Recipient agrees to (a) exercise reasonable efforts to disclose only the minimum amount of Confidential Information that Recipient is compelled to disclose, in the opinion of its legal counsel, and (b) request that confidential treatment (if legally permissible) will be accorded to the Confidential Information being disclosed.
  1. Injunctive Relief. Recipient acknowledges that the Confidential Information is confidential, and that disclosure or use of said information in violation of the terms of this Agreement would result in substantial and irreparable harm to Renaissance, the actual dollar amount of which damage would be impossible to determine. Accordingly, Recipient agrees that, in addition to any other remedies that may be available, in law, in equity or otherwise, Renaissance shall be entitled to seek injunctive relief against the actual or threatened breach of this Agreement or the continuation of any such breach by Recipient, without the necessity of proving actual damages and without posting bond. This provision shall not limit the right of Renaissance to seek actual damages or any other legal or equitable remedy for any breach hereof.
  1. Miscellaneous. This Agreement shall be construed in accordance with and governed by the laws of the State of Illinois, without regard to its conflicts of laws principles. Any action or proceeding against either Party relating in any way to this Agreement shall be brought and enforced only in the Federal (to the extent appropriate jurisdiction exists) and State courts located in Cook County in the State of Illinois, and the Parties irrevocably submit to the jurisdiction of such courts in respect of any such action or proceeding, and irrevocably waive any objection to venue in such courts, including but not limited to any objection that such venue is inconvenient. This Agreement embodies the entire agreement of the Parties with respect to the subject matter hereof, and supersedes all prior and contemporaneous agreements and understandings, oral or written. No amendment to this Agreement and no waiver of any provision hereunder shall be effective unless it is in writing and signed by an authorized officer of the Party against whom such amendment or waiver is asserted. No invalidity or unenforceability of any provision of this Agreement shall affect the validity or enforceability of the remaining portions hereof. This Agreement shall be binding upon, and shall inure to the benefit of, each of the Parties and their respective successors and assigns. There are no intended third-party beneficiaries of this Agreement. This Agreement does not in any way bind either Party to enter into or continue any type of business relationship with the other. Nothing in this Agreement shall prevent Renaissance from at any time disclosing any of its Confidential Information to others or negotiating with others for any purpose whatsoever. Nothing contained in this Agreement shall be construed to constitute the Parties as partners, joint venturers, co-owners or otherwise as participants in a joint or common undertaking. Recipient’s indication of assent to this Agreement via electronic means shall be equally binding and effective as an original signature hereon, and shall be deemed duly and effectively delivered if so transmitted or provided.