July 05, 2017

The PRA published policy statement PS15/17 and supervisory statement SS4/17 on cyber insurance underwriting risk. PS15/17 provides feedback to responses to the consultation paper CP39/16, titled “Cyber insurance underwriting risk.” SS4/17 sets out the PRA’s final expectations regarding the prudent management of cyber underwriting risk. Both the statements are relevant to all UK non-life insurance and reinsurance firms and groups within the scope of Solvency II, including the Society of Lloyd’s and managing agents.

The SS4/17 expands on the PRA’s general approach as set out in its insurance approach document. By clearly and consistently explaining its expectations of firms in relation to the particular areas addressed, the PRA seeks to advance its statutory objectives of ensuring the safety and soundness of the firms it regulates and contributing to securing an appropriate degree of protection for policyholders. The PRA’s expectations are split into the three broad areas of non-affirmative cyber risk, cyber risk strategy and risk appetite, and cyber expertise. The PRA had received thirteen responses to CP39/16 and has amended the supervisory statement accordingly.

 

In this context, cyber insurance underwriting risk is defined as the set of prudential risks emanating from underwriting insurance contracts that are exposed to cyber-related losses resulting from malicious acts and non-malicious acts involving both tangible and intangible assets. Malicious could include cyber-attack and infection of an IT system with malicious code while the examples of non-malicious attacks are loss of data, accidental acts, or omissions. The PRA expects firms to be able to identify, quantify, and manage the risks emanating from cyber underwriting risk both in terms of affirmative and "silent" cover.


Related Links

PS15/17 (PDF)

SS4/17 (PDF)

CP39/16 (PDF)

Keywords: Europe, PRA, United Kingdom, Insurance, Prudential Risk, Cyber Risk, Cyber Insurance

Related Articles
News

APRA Releases Minor Changes to Reporting Standards on SA-CCR for Banks

APRA released minor changes to the three reporting standards for the standardized approach for measuring counterparty credit risk exposures (SA-CCR).

May 22, 2019 WebPage Regulatory News
News

APRA Proposes to Amend Guidance on Residential Mortgage Lending

APRA is consulting on revisions to the prudential practice guide APG 223 on residential mortgage lending in Australia.

May 21, 2019 WebPage Regulatory News
News

ESAs Amend Technical Standards on Mapping of ECAIs Under CRR

ESAs published a second amendment to the implementing technical standards on the mapping of credit assessments of External Credit Assessment Institutions (ECAIs) for credit risk under the Capital Requirements Regulation (CRR).

May 20, 2019 WebPage Regulatory News
News

OCC Consults on Information Collection for Home Mortgage Disclosures

OCC is soliciting comment on the revision of the information collection titled “Regulation C—Home Mortgage Disclosure.” OCC also notes that it has sent the collection to OMB for review.

May 20, 2019 WebPage Regulatory News
News

EIOPA Updates Q&A on Regulations in May 2019

EIOPA published additional questions and answers (Q&A) on guidelines, directives, and regulations applicable to insurers in Europe.

May 17, 2019 WebPage Regulatory News
News

FSB Publishes Update on Meeting of RCG for Americas

FSB published a summary of the meeting of its Regional Consultative Group (RCG) in Americas.

May 17, 2019 WebPage Regulatory News
News

ESRB Paper on Impact of Business Model Similarities on Risk Capture

ESRB published a working paper on whether information contagion and business model similarities explain bank credit risk commonalities.

May 17, 2019 WebPage Regulatory News
News

CBM Notifies ESRB and ECB on Imposing Borrower-Based Measures in Malta

CBM notified ESRB and ECB regarding its decision to impose borrower-based measures on lenders in Malta.

May 17, 2019 WebPage Regulatory News
News

IASB Issues Work Plan and Meeting Updates for May 2019

IASB published an updated work plan, along with the update of its meeting in May 2019.

May 17, 2019 WebPage Regulatory News
News

FCA Publishes Its Business Plan for the Coming Year

FCA published its Business Plan, which sets out the main areas of focus and priorities for 2019/20.

May 17, 2019 WebPage Regulatory News
RESULTS 1 - 10 OF 3103