Security leaders often face challenges when trying to secure sufficient funding from their boards. The key to successful budget negotiations lies in translating technical cybersecurity risks into financial terms that resonate with CFOs and board members. Cyber insurance providers, like Resilience, offer valuable data that can bridge this gap.
Financial Implications of Cyber Events
Resilience, a prominent insurance and risk consultancy firm, has been instrumental in helping Chief Information Security Officers (CISOs) quantify the financial impact of cyber incidents. By correlating financial losses with specific cybersecurity events, Resilience equips CISOs with the tools to convey the financial risks to their boards effectively.
The firm’s recent analysis focuses on ransomware within the manufacturing sector, a prime target for cyberattacks. Although the data primarily pertains to manufacturing, its principles are applicable across various industries. Resilience’s insights stem from a comprehensive review of their proprietary insurance claims data, integrated with public sources like IBM X-Force.
Ransomware and Vulnerability Challenges
Ransomware remains a significant threat, accounting for 90% of incurred losses, although it comprises only 12% of claims. This underscores the severe impact of ransomware, particularly in manufacturing, where operational disruptions can have dire consequences.
In addition to ransomware, the report highlights two critical security failure points: software vulnerabilities and misconfigured multi-factor authentication (MFA). Software vulnerability exploits account for 13% of losses, revealing the urgent need for improved patch management practices. Interestingly, MFA misconfigurations lead to 26% of financial losses, making it the primary point of failure in security incidents.
Recommendations for Mitigation
To mitigate these risks, Resilience emphasizes the importance of continuous MFA validation. This involves auditing existing MFA deployments, ensuring enforcement across all accounts, and eliminating potential bypass conditions.
The report also addresses losses from transfer fraud and email compromise, which represent 30% of claims. Phishing attacks, a common precursor to credential compromise, are rampant, with an 84% rise in phishing emails in 2024. Resilience recommends out-of-band confirmation for payment changes and dual authorization for large transactions to combat these threats effectively.
Broader Implications for CISOs
While the Resilience report specifically addresses the manufacturing sector, its recommendations are relevant to CISOs across all industries. The data provides a solid foundation for translating cybersecurity threats into financial risks, facilitating better communication with financial stakeholders.
According to Jud Dressler, head of Resilience’s risk operations center, by implementing strategic controls, such as MFA validation and procedural checks for financial transfers, organizations can significantly reduce their exposure to cyber risks. This data empowers CISOs to advocate for necessary security investments more effectively.
In conclusion, leveraging cyber insurance data can transform how CISOs articulate the necessity of cybersecurity investments, ensuring that boards comprehend the financial stakes involved. This approach not only aids in securing adequate budgets but also strengthens an organization’s overall resilience to cyber threats.
