Abstract

Effective cyber risk management should include the use of insurance not only to transfer cyber risk but also to provide incentives for insured enterprises to invest in cyber self-protection. Research indicates that asymmetric information, correlated loss, and interdependent security issues make this difficult if insurers cannot monitor the cybersecurity efforts of the insured enterprises. To address this problem, this paper proposes the Cyber Risk Scoring and Mitigation (CRISM) tool, which estimates cyberattack probabilities by directly monitoring and scoring cyber risk based on assets at risk and continuously updated software vulnerabilities. CRISM also produces risk scores that allow organisations to optimally choose mitigation policies that can potentially reduce insurance premiums.

Full Text
Published version (Free)

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Cybersecurity & Cyber-Finance Risk Management: Strategies, Tactics, Operations, &, Intelligence: Enterprise Risk Management to Model Risk Management: Understanding Vulnerabilities, Threats, & Risk Mitigation (Presentation Slides)
Yogesh Malhotra
SSRN | VOL. -
Yogesh MalhotraYogesh Malhotra
08 Dec 2015
Managing cyber risk in the financial sector: Insights from a case study
Chiara Crovini ... Pier Luigi Marchini
FINANCIAL REPORTING | VOL. -
Chiara Crovini, et. al.Chiara Crovini ... Pier Luigi Marchini
01 Jul 2023
Components and Challenges of Integrated Cyber Risk Management
Thomas Kosub
SSRN | VOL. -
Thomas KosubThomas Kosub
03 Apr 2015
Components and challenges of integrated cyber risk management
Thomas Kosub
Zeitschrift f\xfcr die gesamte Versicherungswissenschaft | VOL. 104
Thomas KosubThomas Kosub
01 Sep 2015
View more papers

More From: The Geneva Papers on Risk and Insurance Issues and Practice

Paper Title
Journal
Date
Author
The impact of health-promoting efforts by older individuals on the design of long-term care insurance: the application of IoT technology
Yen-Chih Chen ... Xiaoyi Li
The Geneva Papers on Risk and Insurance Issues and Practice | VOL. -
Yen-Chih Chen, et. al.Yen-Chih Chen ... Xiaoyi Li
10 Jul 2024
The effects of selection and moral hazard in additional health insurance in a universal healthcare system: evidence from Taiwan
Chaohsin Lin ... Shuofen Hsu
The Geneva Papers on Risk and Insurance Issues and Practice | VOL. -
Chaohsin Lin, et. al.Chaohsin Lin ... Shuofen Hsu
03 Jul 2024
Technology investment and insurer efficiency
Faith Roberts Neale ... Gene Lai
The Geneva Papers on Risk and Insurance Issues and Practice | VOL. -
Faith Roberts Neale, et. al.Faith Roberts Neale ... Gene Lai
02 Jul 2024
The effect of microinsurance on the financial resilience of low-income households in Ghana: evidence from a propensity score matching analysis
Emmanuel Owusu Oppong ... Baorong Yu
The Geneva Papers on Risk and Insurance Issues and Practice | VOL. -
Emmanuel Owusu Oppong, et. al.Emmanuel Owusu Oppong ... Baorong Yu
05 May 2024
View more papers