What can organizations do to lower their cyber insurance premium (apart from switching providers)?

Governance, Risk & ComplianceSecurity Strategy & Roadmap
1.4k viewscircle icon2 Comments
Sort by:
Principle Consultant in IT Servicesa year ago

Start working with your insurance company and understand what they are looking for in your security program and build it.

Director of Information Securitya year ago

They should perform BIA and identify cost associated with critical risk if not mitigated to evaluate the total value of cyber risk based on which they can take the cyber insurance.  There are many other means but the simplest one is to start performing Business Impact Analysis.

Content you might like

Do you have a security behavior and culture program (SBCP)?

Yes23%

We’re currently developing an SBCP27%

We’re currently exploring SBCPs27%

No, but I expect that will change13%

No, and I don’t expect that to change6%

Other (please specify)1%

View Results

I'm looking to go for the Certified CISO certification & training as I'm an aspiring CISO. Any recommendations and additional certifications that I should be doing along with that? I already have CISSP. 

Read More Comments

Does your IT team or your HR team absorb the costs of HR technology?

Read More Comments

How would you rate the security of your on-premises network servers?

Excellent12%

Very good54%

Good27%

Fair5%

Poor

Very poor

View Results

AI deepfakes have cost the industry over $200M this year. As CISOs, can we scale detection fast enough, or is regulatory pressure the only way to drive adoption?

Read More Comments