Download this Paper Open PDF in Browser

Content Analysis of Cyber Insurance Policies: How Do Carriers Write Policies and Price Cyber Risk?

38 Pages Posted: 10 Mar 2017  

Sasha Romanosky

RAND Corporation; Carnegie Mellon University - Heinz College of Information Systems and Public Policy

Lilian Ablon

RAND Corporation

Andreas Kuehn

RAND Corporation

Therese Jones

RAND Corporation

Date Written: March 7, 2017

Abstract

Data breaches and security incidents have become commonplace, with thousands occurring each year and some costing hundreds of millions of dollars. Consequently, the market for insuring against these losses (aka cyber insurance) has grown rapidly in the past decade. However, very little is known about these policies and the mechanisms behind the risk assessments. While there exists much theoretical literature about cyber insurance, very little practical information is publicly available. For example, what losses are actually covered by cyber insurance policies, and what are the exclusions? What factors are used to compute the premiums, and how do existing underwriting approaches reflect the technical rate of risk? In this research, we collect and analyze over 100 cyber insurance policies filed with state insurance commissioners. By analyzing these policies, we provide the first-ever analysis of the underwriting process for cyber insurance and uncover how insurance companies understand and price cyber risks.

Keywords: Cyber Insurance, Cyber Liability, Pricing Cyber Risk

Suggested Citation

Romanosky, Sasha and Ablon, Lilian and Kuehn, Andreas and Jones, Therese, Content Analysis of Cyber Insurance Policies: How Do Carriers Write Policies and Price Cyber Risk? (March 7, 2017). Available at SSRN: https://ssrn.com/abstract=2929137

Sasha Romanosky (Contact Author)

RAND Corporation ( email )

1776 Main Street
P.O. Box 2138
Santa Monica, CA 90407-2138
United States

Carnegie Mellon University - Heinz College of Information Systems and Public Policy ( email )

Pittsburgh, PA 15213-3890
United States

Lilian Ablon

RAND Corporation ( email )

1776 Main Street
P.O. Box 2138
Santa Monica, CA 90407-2138
United States

Andreas Kuehn

RAND Corporation ( email )

1776 Main Street
P.O. Box 2138
Santa Monica, CA 90407-2138
United States

Therese Jones

RAND Corporation ( email )

1776 Main Street
P.O. Box 2138
Santa Monica, CA 90407-2138
United States

Paper statistics

Downloads
164
Rank
158,619
Abstract Views
4,627