Canada’s cyber insurance market is growing as online criminals grow more “aggressive” in how they attack your company’s online presence.
However, a new poll commissioned by an industry organization is showing that most employees are missing the mark when it comes to safe online practices at work.
“The cyber market is growing,” said Mahan Azimi, research analyst policy development with the Insurance Bureau of Canada, during a telephone interview from his office north of Toronto. In fact, in the provinces of Alberta, British Columbia and Ontario, it is the “fastest growing” sector of insurance. It is “a small but rapidly growing line of business,” he said.
When the pandemic first hit in 2020, many found themselves suddenly shifting to working from home and “digital processes moved online,” he said. With that, “incidents of cybercrime, like ransomware, has significantly increased.”
Even now, as the pandemic appears to be passing, “the cyber criminals are getting more aggressive going after businesses,” the need for cyber insurance remains just as important.
“Cyber insurance is a great backstop in terms of a cyber loss,” he said. There is “more awareness” of the problem, with workers “waking up to the risks of remote work.”
In fact, that very day, the bureau had released its new “Cyber Savvy Report Card.”
Among the takeaways:
According to a bureau press release, the survey polled 1,525 Canadians working at small and medium-sized businesses (defined as businesses with fewer than 500 employees) and their employers.
But cyber insurance should be seen as a “compliment” to a company’s cyber security policy, “not the be all and end all” to that policy, Azimi cautioned.
By taking strong steps to “improve their posture” when it comes to preventative actions to protect the business online, those businesses “will be eligible for a broader coverage” of insurance.
He pointed to a 2021 cybersecurity survey by the CIRA (Canadian Internet Registration Authority) which found that, in relation to cyber insurance:
When trying to find the right coverage for your business, Azimi told leaders to ask this question: “What are you protecting (yourself) against? No one size fits all.”
There are cyber insurance policies “covering a range of events,” he said, with some “advanced coverage” including any legal costs from a ransomware attack, for example, or any civil damages that may come out of a hack, and even forensic investigation or public relations help that may be needed. A cyber policy may even come with a 24hr phone line to call if you think you have been a victim of a cyberattack and need advice.
“It gives you that peace of mind that you have someone you can call,” Azimi said. “A good policy is one that responds to the needs of the business…we encourage organizations to speak with their insurance representatives.”
The bureau is working with the federal government on cyber education: “We see it as a shared responsibility…to educate consumers. We want Canada to be cyber safe,” Azimi said.
He pointed to the Canadian Centre for Cyber Security in Ottawa as a great “resource for business.” The centre can be contacted via 1-833-CYBER-88 (1-833-292-3788) or [email protected].
“A business can call if they have any questions,” he said.
