The Australian Privacy Act and the European GDPR (General Data Protection Regulation) place strict requirements on how we handle customer data – and insurance companies handle more customer data than most.
Mark Hoppe, Managing Director, Australia and New Zealand at Atradius, speaking to Asia Pacific Security Magazine.
The Australian Privacy Act and the European GDPR (General Data Protection Regulation) place strict requirements on how we handle customer data – and insurance companies handle more customer data than most.
Sense of Security can work with you to ensure that you hold your data securely and have the right policies and procedures in place to deal with a breach if it occurs.
Risk management is the daily bread of the insurance industry. While insurers are rigorous about assessing the risks they insure, they often fall short when assessing their own.
The Hiscox 2019 Cyber Readiness Report says that more firms are failing the cyber readiness test, and losses from cyber-attacks are increasing. This is especially concerning for insurance businesses when we know how much insurance business is transacted online.
To remedy this situation, Sense of Security agrees with Mark Hoppe that insurance companies should consider the strategies that have worked well in other industries:
Sense of Security can work with you every step of the way, either guiding the process for you or providing advice to your staff as they undertake the journey.
We are trusted partners who can work with you to strengthen your cyber defences and data security. Our team has been working with insurers for nearly two decades, and can help you to be well-prepared to create the secure, reliable digital experience that customers demand. We can work with you on an ongoing or retainer basis.
Some of the services we offer include:
We can provide advice on how to protect personal identifiable information (PII), which is highly sensitive in nature.
Sense of Security can advise you on how to implement strong data security. We will also work with you on policies and procedures to meet your data breach notification requirements. In the rare event of a breach, Sense of Security can oversee your response, advise on any potential pitfalls, and suggest improvements.
Our cyber health check is a valuable tool in assessing your organisation’s cyber risk, developing a cyber risk management policy and building cyber resilience.
Our enterprise cyber security review (ECSR) will help you with your top-down security management.
This service helps you to methodically identify and minimise vulnerabilities in your networks, computer infrastructure and applications.
Our penetration testing services test the security of your information systems. We identify vulnerabilities and help you fortify your protection.
Opportunity
The insurer provides web and mobile apps for policy holders to manage their health insurance. The applications are hosted and managed by the insurance company.
Sense of Security was engaged to assess the risks associated with the application and the security status of the information assets.
The report was presented to the board for a decision on the required investment in security of the applications.
Achievements