Featured Product

    EIOPA Chair Speaks on Implications of Cyber Risk for Insurance Sector

    February 26, 2019

    While speaking at the Third Annual Fintech and Regulation Conference in Brussels, the EIOPA Chair Gabriel Bernardino discussed what EIOPA is doing and what should be done to cope with the challenges posed by cyber risk at a global level. He opines that these risks affect the insurance sector on two levels: the first involves the security of the insurance business and the second relates to the role of insurance in covering and managing cyber risk.

    Mr. Bernardino believes that a well-developed cyber insurance market can help to raise awareness of businesses to the risks and losses that can result from cyber-attacks; to share knowledge of good cyber risk management practices; to encourage risk reduction investment by establishing risk-based premiums; and to facilitate responses to, and recovery from, cyber-attacks. The future demand for coverage of this kind will depend, to a large extent, on both the frequency of high-profile cyber incidents and legislative developments in relation to personal data protection. In this context, the implementation of the data protection regulation in EU may lead to a significant growth in cyber risk insurance, with estimates suggesting that there may be parity between the EU and U.S. markets in coming years. Although coverage of cyber risk by insurers is still in its infancy, most of the market is concentrated in the United States. Growth in this market, however, has been significant, with the current forecasts suggesting that premiums may reach USD 20 billion in 2025.

    He added that EIOPA has been monitoring developments in the cyber insurance market for some time. Last year, EIOPA published a report titled "Understanding cyber insurance" based on a structured dialog with insurance companies across Europe. Through this dialog, EIOPA identified a number of issues relevant to the cyber insurance market in Europe. It was found that the cyber insurance industry expects a gradual increase in demand for insurance, mainly driven by new regulation, the increase in cyber risk related incidents, increased awareness of risks, and the increased frequency and severity of cyber attacks. Regulation may be welcomed by the industry in a moderate fashion, as it could help to address some of the identified challenges.

    He also added that EIOPA took into account its work and these findings in the development of our supervisory convergence plan for 2018–2019. In this plan, cyber risk is identified as a priority under the supervision of emerging risks. As part of the activities in this field, EIOPA will develop guidelines regarding Information & Communication Technologies (ICT), security and governance, including cyber resilience, and will further develop supervisory practices that seek to assess information system resilience, cyber risk vulnerability, and the insurance industry’s use of big data. EIOPA will also look into an efficient way of carrying out stress tests on the resilience of the insurance sector to cyber-attacks. It is clear that cyber insurance affects countries worldwide, not just in Europe. Issues related to cyber security and cyber risk are, therefore, one of the three priorities of the EU-U.S. Insurance Project, in which EIOPA plays a leading role. He concluded that "This is a universal challenge! Everyone has to contribute to meet this challenge!"

     

    Related Link: Speech (PDF)

    Keywords: Europe, EU, Insurance, Cyber Risk, Regtech, Stress Testing, Guidelines, EIOPA

    Featured Experts
    Related Articles
    News

    PRA Amends Pillar 2 Capital Framework for Banks

    PRA published the policy statement PS2/20 that contains the final amendments to the Pillar 2 framework and provides feedback to responses to the consultation paper CP5/19 on updates related to Pillar 2 capital framework.

    January 23, 2020 WebPage Regulatory News
    News

    FED Proposes to Revise Information Collection Under Market Risk Rule

    FED proposed to revise and extend, for three years, FR 4201, which is the information collection under the market risk capital rule.

    January 22, 2020 WebPage Regulatory News
    News

    MAS Amends Notices on Minimum Liquid Asset Requirements for Banks

    MAS published amendments to Notices 1015, 613, and 649 related to the minimum liquid assets (MLA) requirements.

    January 21, 2020 WebPage Regulatory News
    News

    APRA Publishes Submission on Fintech and Regtech

    APRA published its submission, to the Senate Select Committee, on financial technology and regulatory technology.

    January 21, 2020 WebPage Regulatory News
    News

    ECB Consults on Guideline on Threshold for Credit Obligations Past Due

    ECB published a draft guideline, along with the frequently asked questions (FAQs), on the definition of the materiality threshold for credit obligations past due for less significant institutions.

    January 20, 2020 WebPage Regulatory News
    News

    BIS Discusses Role of Central Banks in Addressing Climate Change Risks

    BIS published a book that reviews ways of addressing the climate change risks within the financial stability mandate of central banks.

    January 19, 2020 WebPage Regulatory News
    News

    FSB Report Examines Global Nonbank Financial Intermediation Activity

    FSB published the ninth annual report examining the global non-bank financial intermediation activity.

    January 19, 2020 WebPage Regulatory News
    News

    OSFI Publishes Instruction Guide on Solvency Information Return

    OSFI published an instruction guide to assist administrators of pension plans in completing the Solvency Information Return that is required to be filed with OSFI.

    January 17, 2020 WebPage Regulatory News
    News

    EU Amends IFRS 9 Rule, Changes Concern Interest Rate Benchmark Reforms

    EU published Regulation 2020/34 regarding the International Accounting Standard (IAS) 39 and International Financial Reporting Standards (IFRS) 7 and 9.

    January 16, 2020 WebPage Regulatory News
    News

    FDIC and OCC Issue Statement on Heightened Cyber Security Risk

    In response to the heightened cyber-security risk facing the financial services industry and other critical business sectors, FDIC and OCC issued an interagency statement on heightened cyber-security risk.

    January 16, 2020 WebPage Regulatory News
    RESULTS 1 - 10 OF 4515