Browse Definitions :
Definition

cybersecurity insurance

Contributor(s): Matthew Haughn

Cybersecurity insurance is a contract that an individual or entity can purchase to help reduce the financial risks associated with doing business online. In exchange for a monthly or quarterly fee, the insurance policy transfers some of the risk to the insurer.

Many companies purchase cybersecurity insurance policies to cover extra expenditures that could result from the physical destruction or theft of digital assets. Such expenditures typically include the cost of notifying customers that a security breach has incurred, as well as the cost of regulatory compliance fines.

To qualify for coverage, the individual or entity typically has to submit to a security audit by the insurance company or provide documentation with the assistance of an approved assessment tool, such as that offered by the Federal Financial Institutions Examination Council.

Many cybersecurity insurance policies only cover first-party losses to a company. Some policies, however, may also cover third-party liability losses.

Depending upon the price of the policy, coverage may include first and/or third-party liability for cyberextortion, costs associated with strengthening data security, damages due to corrupt or missing data, damages due to inoperable hardware or software and monetary loss from theft or lost business.

Because coverage is not often for the total amount of damages, many companies choose to buy additional insurance to cover amounts beyond which a cybersecurity policy covers.

 

This was last updated in May 2017

Continue Reading About cybersecurity insurance

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.

-ADS BY GOOGLE

File Extensions and File Formats

SearchCompliance

  • Whistleblower Protection Act

    The Whistleblower Protection Act of 1989 is a law that protects federal government employees in the United States from ...

  • smart contract

    A smart contract, also known as a cryptocontract, is a computer program that directly controls the transfer of digital currencies...

  • risk map (risk heat map)

    A risk map, also known as a risk heat map, is a data visualization tool for communicating specific risks an organization faces. A...

SearchSecurity

  • Payload (computing)

    The term payload, when used in the context of networking or telecommunications, is the data carried inside of a packet (or other ...

  • access control

    Access control is a security technique that regulates who or what can view or use resources in a computing environment.

  • ethical hacker

    An ethical hacker, also referred to as a white hat hacker, is an information security expert who systematically attempts to ...

SearchHealthIT

SearchDisasterRecovery

  • virtual disaster recovery

    Virtual disaster recovery is a type of DR that typically involves replication and allows a user to fail over to virtualized ...

  • tabletop exercise (TTX)

    A tabletop exercise (TTX) is a disaster preparedness activity that takes participants through the process of dealing with a ...

  • risk mitigation

    Risk mitigation is a strategy to prepare for and lessen the effects of threats faced by a data center.

SearchStorage

  • storage at the edge

    Storage at the edge is the collective methods and technologies that capture and retain digital information at the periphery of ...

  • Flash Storage

    Flash storage is any type of drive, repository or system that uses flash memory to keep data for an extended period of time.

  • optical disc

    An optical disc is an electronic data storage medium that can be written to and read from using a low-powered laser beam.

Close