Featured Product

    PRA Issues Policy Statement on Cyber Insurance Underwriting Risk

    July 05, 2017

    The PRA published policy statement PS15/17 and supervisory statement SS4/17 on cyber insurance underwriting risk. PS15/17 provides feedback to responses to the consultation paper CP39/16, titled “Cyber insurance underwriting risk.” SS4/17 sets out the PRA’s final expectations regarding the prudent management of cyber underwriting risk. Both the statements are relevant to all UK non-life insurance and reinsurance firms and groups within the scope of Solvency II, including the Society of Lloyd’s and managing agents.

    The SS4/17 expands on the PRA’s general approach as set out in its insurance approach document. By clearly and consistently explaining its expectations of firms in relation to the particular areas addressed, the PRA seeks to advance its statutory objectives of ensuring the safety and soundness of the firms it regulates and contributing to securing an appropriate degree of protection for policyholders. The PRA’s expectations are split into the three broad areas of non-affirmative cyber risk, cyber risk strategy and risk appetite, and cyber expertise. The PRA had received thirteen responses to CP39/16 and has amended the supervisory statement accordingly.

     

    In this context, cyber insurance underwriting risk is defined as the set of prudential risks emanating from underwriting insurance contracts that are exposed to cyber-related losses resulting from malicious acts and non-malicious acts involving both tangible and intangible assets. Malicious could include cyber-attack and infection of an IT system with malicious code while the examples of non-malicious attacks are loss of data, accidental acts, or omissions. The PRA expects firms to be able to identify, quantify, and manage the risks emanating from cyber underwriting risk both in terms of affirmative and "silent" cover.


    Related Links

    PS15/17 (PDF)

    SS4/17 (PDF)

    CP39/16 (PDF)

    Keywords: Europe, PRA, United Kingdom, Insurance, Prudential Risk, Cyber Risk, Cyber Insurance

    Related Articles
    News

    PRA Revises Branch Return and Updates Guidance for Regulatory Reports

    PRA published the policy statement PS17/19, which contains the final policy related to changes in the format and content of the Branch Return Form and reporting guidance.

    September 12, 2019 WebPage Regulatory News
    News

    FINMA Outlines Treatment of Stablecoins in Supplement to Guide on ICO

    FINMA published a supplement to its initial coin offerings (ICOs) guidelines, outlining the treatment for stablecoins under the Swiss supervisory law.

    September 11, 2019 WebPage Regulatory News
    News

    Ursula von der Leyen Presents Structure of Next European Commission

    President-elect Ursula von der Leyen has presented her team and the new structure of the next European Commission.

    September 10, 2019 WebPage Regulatory News
    News

    FED Proposes to Revise and Extend Reporting Form on Systemic Risk

    FED proposed to extend for three years, with revision, the Banking Organization Systemic Risk Report (FR Y-15; OMB No. 7100-0352).

    September 10, 2019 WebPage Regulatory News
    News

    EBA Issues Revised List of Validation Rules for Reporting

    EBA published the revised list of validation rules (version 2.9) in its implementing technical standards on supervisory reporting.

    September 10, 2019 WebPage Regulatory News
    News

    Bundesbank Publishes Supplementary Validation Rules for Reporting

    Bundesbank published the updated document containing supplementary validation rules in the context of the implementation of the reporting system at national level.

    September 10, 2019 WebPage Regulatory News
    News

    APRA Licenses Xinja Bank as Authorized Deposit-Taking Institution

    APRA granted Xinja Bank Limited a license to operate as an authorized deposit-taking institution without restrictions, under the Banking Act 1959.

    September 09, 2019 WebPage Regulatory News
    News

    FDIC Proposes Revisions to Regulations on Interest Rate Restrictions

    FDIC proposed revisions to its regulations covering interest rate restrictions that apply to less than well-capitalized insured depository institutions.

    September 09, 2019 WebPage Regulatory News
    News

    EBA Intends to Clarify End-Treatment of Grandfathered Instruments

    EBA announced its intention to clarify the prudential treatment applicable to own funds instruments at the end of the grandfathering period, which expires on December 31, 2021.

    September 09, 2019 WebPage Regulatory News
    News

    IMF Releases Reports on 2019 Article IV Consultation with Saudi Arabia

    IMF published its staff report and selected issues report in context of the 2019 Article IV consultation with Saudi Arabia.

    September 09, 2019 WebPage Regulatory News
    RESULTS 1 - 10 OF 3799