62% of UK Firms Lack Full Cyber Security Insurance - Despite a Rise in Overall Coverage
Fico research reveals that telecommunications firms lag behind other industries regarding cyber security insurance, with 17% reporting they have no coverage.
This was revealed in a survey based on numerous interviews with senior staff in the security and IT functions of companies with more than 500 employees in the UK and ten other countries. It found that only 38% of UK firms surveyed have cyber security insurance that covers all risks. While most respondents said that their cyber insurance is not based on an accurate assessment of their firm’s individual risk.
The study, which Ovum conducted for FICO, also found that the number of UK firms with cyber security insurance has risen in the past year – just 10% of UK executives surveyed say their firm has no cyber security insurance, compared to 24% in all 11 countries surveyed.
Telecommunications firms lag behind other industries regarding cyber security insurance, with 17% reporting they have no coverage, compared to just 5% of financial service firms.
Steve Hadaway, FICO general manager for Europe, the Middle East and Africa, said: “Cyber security insurance has become a must-have for UK firms in a short period of time.”
“But with that growth will come increased pressure on insurers to increase the transparency and fairness around how premiums are set. Businesses will demand that their investments in cyber security protection — and the strength of their cyber security posture — drive their premiums down.”
Taking into the growing impact of global cyber-related incidents, arguably it makes complete sense that the industry has also expanded. Lloyd’s of London warned in a report last year that economic losses from a single “cloud service disruption scenario” could reach as much as $121 billion.
With this mind, the pressure is mounting on chief technology officer’s to step up to the plate and protect British businesses from damaging cyber attacks, these are the words of Advanced’s CTO, Jon Wrennall, who in a recent whitepaper commented that “Undoubtedly the role of CTO is on the ascent. Every position on the board can, and should, be a driving force for the business. However, given the impact that digital disruption is having on every single industry, the connected CTO is, I believe, best placed in our digital world to truly drive the associated benefits”.
“However, it therefore also falls to the CTO to both manage and overcome the connected threats as well. Indeed, CTOs are fundamentally not doing their job if they don’t achieve this.”
Maxine Holt, research director at Ovum, said: “Although UK organisations perform well in terms of the uptake of cyber insurance, the fact that fewer than 40% have comprehensive insurance demonstrates there is still some way to go for these firms to have a broad view of their security posture and how to present it for insurance.”
“It could also show that these companies have a current security posture that insurers are not prepared to cover comprehensively. We should not detract from the positive news here; 90% of UK organisations have elevated the importance of cyber security to a level that requires insuring, even if only partially.”
- IAM Consultant- One Identity Manager- UK Wide
- Upto £75,000 plus excellent benefits
One Identity IAM consultant is needed for this expanding UK based business, you will be responsible for: Developing and Supporting the Identity and Access management system based-on One Identity products Active Roles Server and Identity Manager. Further develop One Identity Manager’s integration with Service Now to provide automated JML processes and application access requests and fulfilment. Work across the business ensuring that the IAM solutions integrates into both the technology and business systems and processes, ideally automating as mush as possible. Work with the Governance Risk & Compliance (GRC) team to provide application access attestations and toxic combination alerting and reporting. Work on a mixture of IAM related projects to help to integrate new ideas and technology into the business to ensure the business stays fully compliant Assist in ensuring that all IAM capabilities are mapped to internal processes, policies, and standards. Develop metrics to measure and improve and also compile reports around the solution If you are interested in this opportunity we are looking for someone who is skilled within Identity Acess management, you will need to have worked with the One Identity product, ideally both Active Roles Server and Identity Manager Experience in managing and integrating with Microsoft systems (on-premise and cloud), such as Active Directory, Exchange, Office, SharePoint, etc.
- SailPoint Integration Consultant
- Upto £75000 plus benefits
SailPoint Integration Consultant. SailPoint Integration Consultant is needed for this expanding service business to help them with complex deployment with their FTSE focused customer base. They are looking for experienced SailPoint Integration Consultants who have: • Strong solution designing experience with in depth understanding of IAM concepts and thorough understanding of Sailpoint domain. • Thorough understanding of Identity and Access Governance concepts • Leading and creating Identity & Access Management (IAM) technical architecture • Secure by Design principles in Identify Access management, Privilege Access management • Familiar with cloud architectures, data management and source control from a security perspective. This is a great opportunity to join a business that is growing and looking for individuals who want to grow and develop and work on some of the most complex Sailpoint deployments.
- CyberArk Integration Consultant
- Greater London
- upto 75,000 plus benefits
CyberArk Integration Consultant. CyberArk Integration Consultant is needed for this expanding service business to help them with complex deployment with their FTSE focused customer base. They are looking for experienced CyberArk Integration Consultants who have: • Strong solution designing experience with in depth understanding of IAM concepts and thorough understanding of CyberArk domain. • Thorough understanding of Identity and Access Governance concepts • Leading and creating Identity & Access Management (IAM) technical architecture • Secure by Design principles in Identify Access management, Privilege Access management • Familiar with cloud architectures, data management and source control from a security perspective. This is a great opportunity to join a business that is growing and looking for individuals who want to grow and develop and work on some of the most complex CyberArk deployments.
- Penetration Tester, UK based. Ability to achieve SC clearance
- United Kingdom
Experienced Penetration tester- UK based with the ability to achieve SC clearance. On-going training and development and paid certifications / renewals. Interested to hear from all areas of penetration testing, web app, infrastructure, mobile, etc. MUST have current hands on experience delivering penetration testing. Ideally from a consultancy background with experience working with multiple clients. OSCP / CREST / CHECK / Tigerscheme penetration testing experience / certifications desirable. Apply today for more details. All information kept in the strictest of confidence.