Companies are only insuring 12 percent of global information assets from the risk of cyber attack, compared with 51 percent of tangible property, according to a global study by Aon and Ponemon Institute.
The survey of more than 2,200 companies in almost 40 countries, looked at how companies qualify and quantify the financial risk to their tangible and intangible assets in the event of a network privacy or security incident.
Coverage of information assets is low in spite of the fact that companies, on average, valued information assets almost as highly as plants, property and equipment. Meanwhile, the use of internet-connected devices is projected to grow from 10 to 50 billion in five years, the study said, citing Cisco, potentially boosting the amount of these assets exposed to attack.
“The explosion of cloud computing, mobile devices, big data analytics and the Internet of Things is creating enterprise risk management issues that are rapidly growing with the increased use of information assets and technology,” said Kevin Kalinich, global practice leader for cyber/network risk at Aon Risk Solutions.
Findings of the survey include:
“It’s clear that there is a risk and losses can be anticipated, but organizations are not insuring against the risk,” said Larry Ponemon, chairman and founder of the Ponemon Institute, a research firm on privacy, data protection and information security.