Connect with us

Technology

Are cyber insurance and incident response budgets the same thing?

Published

on

Dominic Trott, head of strategy – UK, Orange Cyberdefense

 

Cyberattacks on businesses increased by 13% in 2021 compared to the previous year. Yet while it’s not necessarily the case that the number of bad actors is increasing, it is the scale on which they’re operating that has broadened exponentially.

In addition, the manner in which cyberattacks are being carried out has also evolved. While some cybercriminals hack for fun, the vast majority of malicious activity is, unsurprisingly, conducted for financial gain and targets organisations on the basis of two simple principles: first, where there is the most value to be targeted; and second, where the attacks are most likely to be successful.

It’s also likely that the full extent of the cybercrime landscape is hidden. Accurate data on the impact of cyberattacks is often hard to come by because, in many cases, the breached organisations are unaware of the full extent of the attack – or even that one took place. They might genuinely not know this information if they don’t have accurate oversight of their digital estate, or keep quiet for fear of incurring legal liabilities or causing reputational damage.

The current security landscape has created the perfect storm for cybercriminals, as cyber insurers and Computer Security Incident Response Teams (CSIRT) often end up fighting over the same budget. Traditionally, it has been relatively easy for firms to obtain cyber insurance coverage at low premiums. However, the heightened cyber risks and exponential growth of ransomware attacks in recent years has led to premiums rising.

The question that businesses often ask, therefore, is ‘why do I need an incident response retainer when I already have cyber insurance? Surely, it’s a waste of money? If the worst does happen, the insurance company will pick up the bill for any damage done after the event’. I would argue that is a short sighted and potentially dangerous approach. Let’s look at the different roles of incident response and cyber insurance.

  1. Cyber Insurance: like other types of insurance, this aims to give businesses a way to ensure that if the worst happens, they can recover some of the costs. Cyber Insurance will likely cover you for some of the tangible costs associated with a breach, but it probably won’t cover all of them. By acting quickly and limiting the scale of the breach, you may be able to reduce the full impact. In addition, some insurance companies will expect you to have demonstrated a level of preparedness before accepting your claim – a bit like having a burglar alarm or dead-bolt locks on your house before a house insurance claim is accepted.
  2. Incident Response Retainer: aims to provide rapid, on-demand expertise in an emergency if the customer calls them immediately after an incident. The key to mitigating the impact of any cybersecurity incident is the reaction time between detection and response. Many companies lack the infrastructure needed to react in a quick and secure manner. Having an incident response team available 24/7 to identify, contain and eradicate threats and to get businesses back up and running as soon as possible may be crucial to their ability to continue successfully trading.

 

Cyber resilience

But isn’t incident response included in the insurance policy? In many cases, it will be. And perhaps this is where the confusion comes. Cyber insurers will often pay out, but only as long as the incident is covered by an incident response retainer. Their objective is of course to help cover the financial losses that result from cyber events and incidents and in numerous policies, the presence of a retainer agreement with an external incident response provider can help prevent severe losses. This will often bring down the premium of the insurance policy. Having a retainer also means you get to choose the CSIRT team that you are going to be working with in advance. You can assess their credentials, their experience, talk to their other customers – all before an incident occurs.

The key thing here is building cyber resilience. Of course, there is no such thing as complete security. For starters, incident response alone is insufficient to deliver cyber resilience from either a technical or procedural perspective. Good practice advocates that solutions should be in place across the full threat lifecycle. For example, the NIST framework recommends that organisations identify their threats and vulnerabilities; protect against them with security tools and operations; detect threats as they address the enterprise; respond to contain and remediate an incident as it occurs; and recover to take lessons learned from incidents and improve ‘business as usual’ appropriately.

But, leaving an end-to-end approach to threat lifecycle management to one side, having both cyber insurance and an incident response retainer working seamlessly together will at least provide organisations with a fighting chance of continuing their core business functions if and when disaster strikes.

 

Making cybersecurity a joint enterprise

There are worrying trends emerging in the cybersecurity market. While attacks are becoming more sophisticated and ransoms are rising, there are concerns that there might not be enough money in the still-emerging sector to cover everyone’s needs. So, what can companies do? They should still invest in insurance coverage, but they also need to look for other ways to cover their potential exposure, including CSIRT rapid response teams.

It cannot remain a budgetary decision for a CTO and a CFO to fight over whether to firefight OR recoup what has been lost in cyber-attacks. Both are important. An incident response team is the first port-of-call to help respond to any cyber accident or incident. Then and only then – once the breaches have been made safe – should you call in the moneymen.

Technology

How Digital Adoption Platforms can enhance digital transformation and customer experience in the insurance industry

Published

on

By

By Vara Kumar, CPTO & Co-founder, Whatfix

 

Like many industries, the insurance sector was prematurely hastened towards digitalisation due to the Covid-19 pandemic. Now, digital adoption continues to be a key focus of many organisations to strengthen their fully or partially remote workforce with nearly 50% of IT spend being put behind the growth of core applications and infrastructure, and an additional 25% being invested into digital solutions.

But with millions of claims processed every year, needing to provide superior customer service to drive retention, complex procedures and processes to navigate and both internal rules and external regulations to follow, digital transformation plans for insurance organisations are filled with challenges.

Increasingly digitalised workforce

With the pandemic came an overhaul of how we work. Remote and hybrid working is now the norm, and across most industries, there’s been a huge expansion in both the number and type of digital applications used to communicate, collaborate and enhance productivity across an organisation.

For the insurance industry, this has meant that every employee, from underwriters to customer service agents, has had to adapt to handling their steps of the process, from setting up coverage to filing a claim, remotely, and across multiple platforms and tools.

The challenge is ensuring this more digitalised workforce fully understands how to successfully navigate each application effectively and efficiently to ensure they can deliver on their services and customer experience (CX). But putting together a skilled, high-performing IT team can be difficult – according to an enterprise study, 54% of organisations said they’re not able to accomplish their digital transformation goals because of a lack of technically-skilled employees. This is further complicated by the fact that, in an age of labour shortages, the sector is forced to get creative and find ways of managing the workload and navigating new technologies with a smaller workforce.

Changing customer expectations

On top of the challenges that the increasingly digitalised workforce is experiencing, the tech-savvy customer of today also expects more from their insurers. Indeed, the pandemic forced customers as well as organisations to become more IT-literate, and in the customer service space in particular, customer expectations are high.

Customers today want and expect to be able to make maturity or house insurance claims in an efficient and straightforward manner, across multiple platforms, from phone to email to social media, preferably in a matter of minutes.

McKinsey observes that improving the value chain from the customer’s point of view is an important step within digital-ecosystem efforts, and HubSpot found that 90% of consumers expect an immediate response to a customer support issue, with 60% defining ‘immediate’ as under ten minutes. Even pre-pandemic 44% of customers were comfortable utilising chatbots for insurance claims, and 43% were comfortable using them when buying insurance policies.

Undergoing a digital transformation on the customer side is crucial then, as insurance providers that can meet these changing customer expectations are more likely to attract and retain customer loyalty now and in the future. However, just 30% of insurers believe that they have the capabilities to fully digitalise their customer experience.

So, what can insurers do to meet the technological demands of a digitalised workforce and a multi-channel CX for tech-savvy customers?

Using DAPs to boost digital transformations and CX

In a rapidly changing market, Digital Adoption Platforms (DAPs) can be a huge advantage to insurers looking to manage the challenges of today and come out on top. A piece of instructional no-code software that sits as an additional layer on top of other software applications, such as Claims Management or Policy Administration Systems, to help train and guide users on how to best use the software, DAPs can massively improve the agility and effectiveness of business processes across an organisation.

On the employee side, for example, DAPs can help insurers to manage challenges of a frequently changing workforce by making it easier for employees to get to grips with new digital applications. With the likes of  guided walk-throughs and task lists, which help employees through each step they need to know and just-in-time nudges to reduce policy administration, claim, or underwriting processing times, employees are more efficient and technology adoption is streamlined and accelerated. Easy to integrate into existing systems, DAPs can be used to not only train and onboard new employees but also upskill veteran workers, training the workforce as a whole on the latest technologies being used across the industry. As a result, everyone from underwriters, claims, and service representatives will better understand insurance tools that will enable them to be more productive and better deliver customer experiences leading to better business outcomes. Indeed, from the customer perspective, DAPs can enable companies in the insurance industry to keep CX positive and smooth. Firstly, by training on near real-life scenarios and secondly, by being able to more easily navigate applications, processes and systems internally, customer service representatives will be able to spend more time and focus on the customer and on resolving their queries, without being hindered by technological hurdles. For example, errors made in policy or claims processing can be reduced if employees can use self-help elements of DAPs to mitigate issues and solve queries themselves, in real-time. As a result, customers will be happier with their service, and more likely to stay loyal to that brand.

Customer-facing platforms can also be improved using DAPs. Typically, legacy apps whether on our phones or online, can make it difficult for users to complete their tasks, leaving them frustrated. With DAP user-specific content and just-in-time support, such as pop-ups, automated walk-throughs and user guides for every part of the user journey, customers can experience a smoother journey and have their queries and issues resolved more efficiently..

Drive efficiency and customer satisfaction

DAPs are already growing in popularity, with Gartner predicting that by 2025, “70% of organizations will use digital adoption solutions across the entire technology stack to overcome still insufficient application user experiences.”

So, now is the time for insurance providers to leverage this technology to facilitate their digital transformation plans. By ensuring their increasingly dispersed and digitalised workforce can use the latest applications to their full potential, and that their customer journey is as efficient and easy-to-use across the multiple channels customers expect, insurers will see huge benefits, from increased efficiencies to improved customer satisfaction.

Continue Reading

Business

AI – THE HIDDEN WEAPON IN THE BATTLE AGAINST FINANCIAL CRIME

Published

on

By Neil Murphy, Global Channels Chief, ABBYY

 

Fraud is a million-pound problem with one in fifteen people falling victim every year, making it one of the most common crimes in the UK. To combat financial crime, the industry has been investing heavily in its security system, fraud prevention initiatives and technology. However, the financial criminals are continuously adapting their methods and the battle against fraud rages on. In fact, according to UK Finance, unauthorised financial fraud losses across payment cards, remote banking and cheques totalled almost £800 million in 2020. It should come as no surprise then that the way financial organisations assess and manage risk needs to change.

Technology can be a double-edged sword when it comes to mitigating financial fraud. When technology evolves, criminals use increasingly sophisticated methods to carry out attacks.  Therefore, organisations must take a holistic approach to protecting themselves by taking a closer look at improving their processes, using data more effectively and harnessing a combination of artificial intelligence (AI) technologies to be safe and secure. Only by wielding these weapons can businesses win the battle against financial crime.

In an effort to combat financial fraud, businesses must take a holistic, AI powered approach – but what does this involve?

 

Turning data insight to impact

Financial services are a data heavy industry. From structured, unstructured, transactional and account-level, it’s clear that there is no shortage of it.  While this data brings benefits in terms of consumer insights, in the hands of nefarious actors, it can make fraud more pervasive. It’s true that initiatives like General Data Protection Regulation (GDPR) have certainly ramped up the regulation of consumer data, but there is still a huge opportunity to uncover insights with the data to bring more benefits to the financial organisation.

In the finance industry, building trust and customer loyalty are incredibly important, which is why fraud can be detrimental to their reputation, and result in added cost. By collecting the data from fraud, anti-money laundering (AML), and cybersecurity, financial organisations can consolidate information across historically isolated functions and make more informed decisions with a holistic view of risk.

By identifying similarities from the data collected across AML, fraud, and cyber teams, breaking down these silos can provide a more transparent view of the threat landscape, better detect suspicious transactions, and streamline investigations. Since the criminals are using cyberspace to commit fraud and ultimately need to monetise that information so that the funds appear legitimate, it makes business sense to bring these functions together.

 

360-degree view to fraud prevention

Before financial organisations look toward technology to mitigate financial fraud, there are few steps they must take to ensure they are making the most out of these investments. First financial institutions need to be able to identify the bottlenecks and blind spots in their business processes, to see which areas need to be improved and where automation will be needed. With process intelligence organisations can analyse less structured processes, identify opportunities for improvement, and increase both the speed and accuracy of executing said processes. With this holistic approach, financial institutions can collect and analyse intelligence from across the organisation. This model improves intelligence sharing across the industry and allows financial institutions to continuously test and improve their security playbooks.

Once they have a 360-degree overview of their business processes, the most effective place to begin automating is the onboarding process. Streamlining onboarding by leveraging modern technologies enables financial institutions to filter out fraudulent actors and deliver a more frictionless experience for their customers. Using a combination of technologies, for example artificial intelligence (AI), robotic process automation (RPA), and natural language processing (NLP), can enable financial institutions to process both structured and unstructured documents, minimise manual steps, and reduce the need for making redundant requests of the client. Establishing an effective client onboarding process not only enables faster detection of potential fraud but plays a significant role in developing relationships with new clients.

One thing is for sure, a holistic strategy provides the visibility necessary to better prepare for auditing and compliance requirements. It improves efficiency, protects the brand and reputation, and protects against sanctions or fines. There is greater protection against identity theft and fraud from a customer perspective, and fewer security incidents increase uptime, allowing customers seamless access to their financial lives.

 

AI is powering the future of finance

Artificial intelligence has taken the world by storm and the financial services sector is no different. Investing in the right AI technologies can see the industry reap the benefits of a more secure and efficient organisation.

With AI-powered solutions for improving and monitoring business processes and intelligent document processing, financial organisations can reduce manual steps required in the onboarding stage and automate both structured and unstructured documents. This enables them to have a birds-eye view of customer data so that they can distinguish when activity is suspicious and fraudulent.

By opening up visibility and reducing manual effort aided by AI, RPA, and NLP, the frontline finance teams can focus on protection and mitigation and create robust fraud detection and prevention systems. Evidently, there are a whole host of benefits that come when a financial institution achieves a holistic fraud prevention strategy, free of limiting silos.

By taking new steps to fraud prevention, risk through this lens requires more than technology investment. It’s the combined focus on people, processes, and content in the successful implementation of a holistic approach.

Businesses must think strategically about AI and understand it’s impact to truly achieve fraud-free finance.

 

Continue Reading

Magazine

Trending

Finance8 hours ago

Hey, Gen Y and Gen Z do you think you can retire comfortably?

By Penelope Gregoriou, technical investment specialist at Alexforbes   Millions of South Africans rely on the money saved in their...

Uncategorized8 hours ago

GDPR: data security four years on

Bruce Penson, the managing director of cyber security and IT support company Pro Drive IT, outlines how GDPR has changed...

Banking8 hours ago

The importance of Customer Experience (CX) for retail banks today

By James Isaacs, President, Cyara   Today’s retail banks face considerable challenges. Open banking initiatives –  that make it easier...

Finance8 hours ago

Getting ready for VAT digitisation: automation is key

Christiaan Van Der Valk, Vice President for Strategy and Regulatory at Sovos, says technology will power real strategic success for...

Banking8 hours ago

Challenging the challenger: Why the digital transformation of traditional banking is key for competing with challenger banks

By Sam Schofield, Senior Vice President: Global Enterprise at Udacity   Monzo and Revolut are only seven years old. Starling,...

Wealth Management9 hours ago

Green with Envy – an Environmentally Conscious Data Center

Mark Fenton, Product Manager, Future Facilities   Environmental considerations are at the top of every business leader’s agenda and an...

Technology9 hours ago

How Digital Adoption Platforms can enhance digital transformation and customer experience in the insurance industry

By Vara Kumar, CPTO & Co-founder, Whatfix   Like many industries, the insurance sector was prematurely hastened towards digitalisation due...

Business18 hours ago

Why do Traders Need a Managed Service Partner?

Jeff Mezger, Vice President of Product Management, Financial Markets, TNS   Does your financial institution have the understanding, resources, talent...

Business18 hours ago

The FCA will take immediate action on customer vulnerability; here’s how firms can prepare.

Author: Jonathan Barrett, CEO and Co-Founder at Comentis   Identifying and supporting vulnerable clients has become a priority for financial...

The Green Revolution In Investing - Sustainable Investing The Green Revolution In Investing - Sustainable Investing
Business1 day ago

How fintech is key to empowering climate action

Attributed to: Rory Spurway, CEO & Founder of CarbonPay   As human activity continues to have a significant impact on...

News2 days ago

Fractional NFTs- A Positive Impact on the Market

Non-Fungible Tokens (NFTs) have been making headlines for quite some time now. The phenomenon is getting a lot of attention...

Technology2 days ago

Are cyber insurance and incident response budgets the same thing?

Dominic Trott, head of strategy – UK, Orange Cyberdefense   Cyberattacks on businesses increased by 13% in 2021 compared to...

Business2 days ago

Ticketing modernization: the key success factors for an outstanding deployment

Arnaud Depaigne, Product Manager, Smart mobility, Fime   Technology has transformed the way we pay, and transport ticketing has been...

Finance2 days ago

How to increase the growth of crypto apps in a challenging market environment

By Alexandre Pham, Vice President, EMEA at Adjust   Crypto and digital assets became one of the hottest tech topics...

Business3 days ago

Businesses must adapt to meet customers’ evolving payment needs

Nathan Shinn, Founder and Chief Strategy Officer, BillingPlatform   From the lingering impact of the COVID-19 pandemic, through to the...

Banking4 days ago

Carbon Neutral and Net Zero: The New Disrupter-in-Chief

Authored by Jason Matteson, Director of Product Strategy, Iceotope   When we think of market disruptors we typically think of...

Business4 days ago

Balancing risk management with a seamless customer experience

By Andrew Davies, VP, Global Market Strategy, Financial Crime Risk Management, Fiserv   For quite some time, measures to mitigate...

Business4 days ago

The need for blockchain to be interoperable and why it matters

By Kai Waehner, Field CTO and Global Technology Advisor at Confluent   In mid-2022, it would be fair to say that...

Interviews4 days ago

How MFA can protect the financial sector from the unprotectable

The financial sector has long been a primary target for threat actors. However, the unique infrastructure of core financial systems...

Business5 days ago

Why a three-step framework can help financial advisers support their most vulnerable customers.

Author: Tim Farmer, Co-founder and Clinical Director at Comentis   We are witnessing a vulnerability epidemic. With the Financial Conduct...

Trending