Dan Law from Cowbell Cyber joined us in October for our latest Cheatham Chat to discuss the state of cyber insurance. Cyber insurance is more important than ever, and Dan did a great job of breaking down the basics for everyone. He explained why cyber security is important, what you can do to protect your business, and how to respond to a cyber attack. If you missed it, don't worry - we recorded it! You can find the recording above this post.

As I was interviewing Dan, a thought came to me: every insurance agent selling to small businesses should be offering cyber insurance. Law confirmed that many insurance agencies have, in fact, made it a requirement to offer cyber insurance as part of every small business offering. I think we will eventually hit a point where every insurance agent will have a responsibility to offer cyber insurance as part of every small business quote. 

Now seems like the perfect time to integrate cyber insurance into an agent’s quoting process, particularly with the renewal season approaching. Here are three easy steps to take to start selling cyber insurance: 

Get appointed by a carrier that offers cyber insurance

There are many options in the market for cyber insurance. One such provider is Cowbell Cyber, which we featured during our webinar and is available on the Bold Penguin platform. In addition to insurance, Cowbell Cyber harnesses technology and data to provide small businesses with advanced warning of cyber risk and customized cyber insurance adaptable to the threats of today and tomorrow. As I spoke with Dan, I was particularly impressed with the data that Cowbell has amassed on millions of businesses in order to properly underwrite each company.

There is an easy way to start quoting Cowbell Cyber insurance – get appointed through Bold Penguin. Setup a demo today to get started. 

Explain to the customer why they need cyber insurance

In order to understand the importance of cyber insurance, it can be helpful to use an example. Law talked about the Target breach that allegedly originated from an HVAC contractor work on site. 

In late 2013, Target announced that it had suffered a data breach that affected millions of customers. Hackers were able to gain access to Target's computer systems and steal credit and debit card information. The breach caused confusion and concern among Target customers, and the company had to scramble to try to fix the damage. The breach was allegedly caused by an HVAC contractor who installed a malware-infected computer on the retailer's network. The breach affected up to 40 million customers who had their credit and debit card information stolen.

If the contractor in this scenario had cyber insurance, the first step, as suggested by Law during the webinar, is to contact your agent and insurance provider to determine next steps. While the details of the situation matter, cyber insurance acquired by Target or the HVAC company may have provided some coverage and the carrier would most likely have stepped in with resources and expertise to address the situation. The Target-HVAC contractor example and similar stories can be used to explain the importance of having cyber insurance. 

Discuss the different types of cyber insurance policies available

The types of cyber insurance policies available vary depending on the insurer. However, most policies will typically cover expenses related to data breaches, including notification costs, credit monitoring for affected individuals, and defense costs in the event of a lawsuit. Other common coverage includes:

• Cyber extortion: Coverage for payments made to ransomware attackers or other criminals who demand money in exchange for not releasing sensitive data or crippling systems.

• Business interruption: Financial reimbursement for lost revenue due to a cyberattack that renders a company's network unusable.

• Liability: Coverage for legal costs and damages awarded to third parties in cases where the company is found to be at fault for a cyber incident.

The main difference between first and third party cyber insurance is that first party cyber insurance covers the insured organization for damages incurred as a result of a cyber attack, while third party cyber insurance covers the insured organization for damages incurred as a result of a cyber attack against another organization. First party cyber insurance is also typically more comprehensive than third party cyber insurance, covering not only damages to the organization's computer systems and data, but also business interruption losses, intellectual property theft, and extortion.

If you are interested in getting started quoting cyber insurance, Bold Penguin can help - set up a demo today.