Data Breach , Ransomware , Technology

Buying Cyber Insurance: Who Should Be Involved?

Greg Markell of Ridge Canada Cyber Solutions Discusses Critical Considerations
Greg Markell, president and CEO, Ridge Canada Cyber Solutions Inc.

All the key players of a company's management group, including the CISO, need to be involved in the decision about whether to invest in cyber insurance, says Greg Markell of Ridge Canada Cyber Solutions, a cyber insurer.

See Also: Effective Cyber Threat Hunting Requires an Actor and Incident Centric Approach

That way "when they're reporting into the board about the risk transfer protocols they've taken, it's something that's seamless and it's something that everyone has input on," he says. "CISOs are particularly important to that process because they are the ones that have intimate knowledge of the inner-workings of the security regime of the company."

In an interview at Information Security Media Group's recent Fraud and Breach Summit in Toronto, Markell, who was a panelist, also discusses:

  • Determining whether to allocate budgets for cyber insurance versus cybersecurity technology;
  • Considering supply chain cybersecurity risks and how they apply to cyber insurance considerations;
  • Emerging cyber insurance trends.

Markell is president and CEO of Ridge Canada Cyber Solutions Inc. He has advised public, private and non-profit organizations regarding their risk transfer of organizational exposure to cyber-related losses. Markell's career in insurance began with underwriting for a large national insurer. He then moved on to join a national brokerage, focusing on specialty insurance products for financial services companies, including D&O and cyber liability. Markell left this firm as a partner in 2014 and joined a top 10 global broker, where he was a resource for his colleagues for D&O and the practice leader for cyber and privacy liability.


About the Author

Marianne Kolbasuk McGee

Marianne Kolbasuk McGee

Executive Editor, HealthcareInfoSecurity

Marianne Kolbasuk McGee is executive editor of Information Security Media Group's HealthcareInfoSecurity.com media site. She has about 30 years of IT journalism experience, with a focus on healthcare information technology issues for more than 15 years. Before joining ISMG in 2012, she was a reporter at InformationWeek magazine and news site, and played a lead role in the launch of InformationWeek's healthcare IT media site.




Around the Network