Featured Product

    EIOPA Report Confirms Need for Cyber Resilience Framework for Insurers

    September 17, 2019

    EIOPA published a report focuses on the cyber risk profile of insurers from the perspective of operational risk and analyzes the challenges and opportunities in the cyber insurance market in Europe. The findings identified the key challenges faced by cyber underwriters and confirmed the need for a sound cyber resilience framework for insurers.

    The report finds that clear, comprehensive, and common requirements on the governance of cyber-security as part of operational resilience would help ensure the safe provision of insurance services. This would include a consistent set of definitions and terminology on cyber risks to enable a more structured and focused dialog between the industry, supervisors, and policymakers, which could further enhance the cyber resilience of the insurance sector. Furthermore, the report finds that enhanced data collection on cyber incidents and losses should allow insurers to manage and price their affirmative cyber risk exposures more effectively. Having common and harmonized standards for cyber-risk measurement and cyber-incident reporting could greatly facilitate the understanding of cyber risk underwriting. To this end, creating a European-wide cyber incident-reporting database, based on a common taxonomy, could be considered as well.

    The report highlights that the cyber insurance market in Europe is still small in size but growing rapidly. In 2018, the data show an increase of 72% in terms of gross written premiums for the surveyed insurers and this increase amounts to EUR 295 million in 2018 compared to EUR 172 million in 2017. However, non-affirmative cyber exposures (where cyber risk is neither explicitly included nor excluded in an insurance policy) remain a source of concern. While common efforts to assess and address non-affirmative cyber risks are under way, some insurers have adopted a "wait-and-see" approach to address non-affirmative cyber risk, where the implementation of action plans to address non-affirmative exposure depends on the materialization of future events. Therefore, further effort is needed to properly tackle non-affirmative cyber exposures to address the issue of potential accumulation risk and to provide clarity to policyholders.

    This report is based on the responses of 41 large (re)insurance groups across 12 European countries—Austria, Belgium, Denmark, Finland, France, Germany, Italy, the Netherlands, Norway, Spain, Sweden, and United Kingdom. The sample under consideration is similar to the one for the 2018 Insurance Stress Test by EIOPA, representing a market coverage of nearly 75% of total consolidated assets. 

     

    Related Links

    Keywords: Europe, Insurance, Cyber Risk, Operational Risk, Cyber Resilience Framework, Governance, Underwriting Risk, EIOPA

    Related Articles
    News

    BoE and FCA Outline Next Steps for LIBOR Transition in 2020

    BoE, FCA, and the Working Group on Sterling Risk-Free Reference Rates (RFRWG) have published a set of documents that outline the LIBOR transition priorities and milestones for 2020.

    January 16, 2020 WebPage Regulatory News
    News

    BCRA Updates Regulation on Capital Requirements and Information Regime

    BCRA updated the rules on minimum capital requirements for financial entities and on certain aspects of the information transparency regime for quarterly and annual supervision.

    January 16, 2020 WebPage Regulatory News
    News

    FDIC and OCC Issue Statement on Heightened Cyber Security Risk

    In response to the heightened cyber-security risk facing the financial services industry and other critical business sectors, FDIC and OCC issued an interagency statement on heightened cyber-security risk.

    January 16, 2020 WebPage Regulatory News
    News

    EU Amends IFRS 9 Rule, Changes Concern Interest Rate Benchmark Reforms

    EU published Regulation 2020/34 regarding the International Accounting Standard (IAS) 39 and International Financial Reporting Standards (IFRS) 7 and 9.

    January 16, 2020 WebPage Regulatory News
    News

    BIS to Expand Central Bank Membership

    BIS is to expand its central bank membership base and to increase collaboration in its work as a forum for international cooperation and as a hub for central banks and other financial authorities.

    January 14, 2020 WebPage Regulatory News
    News

    EIOPA Issues Technical Specifications for Market and Credit Risk Study

    EIOPA published the technical specifications, including instructions, for the market and credit risk modeling comparative study for year-end 2019.

    January 13, 2020 WebPage Regulatory News
    News

    FED Publishes FAQs on Tailoring Rules for Banks

    FED released a letter announcing the publication of an initial set of frequently asked questions (FAQs) in response to questions from institutions.

    January 13, 2020 WebPage Regulatory News
    News

    IA of Hong Kong Publishes Stress Testing Scenarios in Relation to ORSA

    IA of Hong Kong published the prescribed scenarios for stress and scenario testing to be used by the authorized insurers conducting general insurance business.

    January 13, 2020 WebPage Regulatory News
    News

    FDIC Letter on Submission of Call Reports by End of January 2020

    FDIC, in a letter to financial institutions, announced that the Consolidated Reports of Condition and Income (Call Reports) for the December 31, 2019 report date must be submitted to the Central Data Repository of the relevant US agencies by January 30, 2020.

    January 13, 2020 WebPage Regulatory News
    News

    EBA Consults on Calculation of Own Funds Requirements for Market Risk

    EBA is consulting on the draft regulatory technical standards for calculation of the own funds requirements for market risk, under the standardized and internal model approaches of the Fundamental Review of the Trading Book (FRTB) framework.

    January 13, 2020 WebPage Regulatory News
    RESULTS 1 - 10 OF 4489