5 Ways the Market Is Trying to Demystify Cyber Insurance for SMBs

Small- and medium-size businesses have a tendency to think hackers don't find them appealing. The industry is debunking that notion and getting them affordably covered.

As the cyber insurance market matures, carriers are increasingly looking to small and mid-sized businesses to achieve growth in the segment.

To achieve that goal, insurers and brokers are adapting their strategies to target this market. Here are five examples:

1) Packaged policies

According to AM Best, many insurers have upped their efforts to add cyber coverage to their CPP and BOP products. The coverage is now also commonly bundled with E&O policies, and the standardization of cyber forms have enabled a growing number of small insurers to get into the market, whilst reinsuring 100% of the risk.

Market sources say that SMB-focused brokers have also become more amenable to this kind of deal. For a long time, the prevailing attitude was that premiums were too low and commissions attached to cyber supplements were not worth the hassle of trying to convince clients to purchase a complicated product.

But this is changing.

“The global impact of GDPR, coupled with contractual demands from institutions and trading partners, has driven SMBs to demand more from their brokers regarding cyber policies,” said David Price, the director of specialty at Lloyd’s broker SSL Endeavour.

2) Adequate coverage

The cyber market took off at the corporate level, and for a long time, coverages were not well-suited to the needs of SMBs.

The gap in the market was spotted by new and traditional players, which have designed simpler policies that are easier for business owners without an IT background to understand. Some are very basic, covering first party damages and little else, while others include PR services, crisis management and additional services.

Some policies also help SMBs to perform tasks like paying ransomware with bitcoins; the kind of thing that tends to befuddle many a small business owners.

Coalition, a San Francisco-based MGA that uses capacity from Swiss Re CS and Argo, provides services like cyber security assessments and the monitoring of crooks who build fake websites to perform frauds against SMBs.

3) Affordable rates

Anita Sathe, chief strategy officer, CyberPolicy

Not long ago, cyber policies were notorious for how expensive they were.

Prices have gradually shrunk, however, and some markets have been able to bring rates down to an extent that coverage can be attractive even for the smallest companies.

Coalition, for example, has starter-level policies that cost as little as $25 a year.

But pricing varies according to the business.

Anita Sathe, the chief strategy officer at CyberPolicy, noted that a bakery that does not need to save third-party data can obtain a $1 million limit for around $30 a month. But a doctors’ office that stores data from many patients may have to fork out $200 to $300 a month for the same limit.

4) Lower limits

While large corporations may look for capacities in the market that reach hundreds of millions of dollars, SMBs obviously require much more modest values.

Sources say that some big companies are demanding cyber policies with limits of at least $1 million from vendors. But for many companies, needs are not even that high.

Travelers, which is very active in the SMB market, offers coverages with limits as low as $25,000 to $50,000.

The expectation is that they will convince clients to make first purchases and gradually appreciate the value of cyber insurance. Tim Francis, the enterprise cyber lead at Travelers, sees a trend for customers to later extend their limits to up to $1 million.

“Especially when it comes to ransomware events, it is not uncommon for claims to exceed six figures, not only due to the payment of the ransom, but also to the critical part of the cyber claims experience,” he said.

5) Online underwriting

Buying a cyber policy can be a time intensive exercise. Risk managers are often asked to answer long questionnaires that demand extensive input from their IT and cyber security colleagues.

Shawn Ram, insurance lead, Coalition

The market has realized that the same kind of approach would not cut with SMBs.

The answer, in the view of many players, is to make the process much easier by selling policies online. At brokers CyberPolicy and CoverWallet, clients can buy their policies fully online.

SSL Endeavour, for its part, has created a system where brokers can do the whole underwriting process and access Lloyd’s cyber capacity through a web portal.

Shawn Ram, the insurance lead at Coalition, pointed out that the company has streamlined the whole process by using data analytics, ultimately reducing questionnaires from 20 pages to 4 or 5 basic questions.

“We took an underwriting process that can take 10 to 15 days and, through the broker community, we have enabled that process to take less than 3 minutes,” he said.

The Task Ahead: Education

The demand for cyber insurance from SMBs is growing faster than the demand from larger corporations, according to a recent report by Aon. But it still amounts to a reduced share of the market. To make real inroads in this universe, the industry must invest in the education of business owners.

Many are still unconvinced that their modest businesses can be targeted by hackers the same way that big corporations are.

Stephanie Reilly, the cyber expert at California-based broker Relation Insurance Services, notes that a couple of her clients have recently suffered cyber attacks, but still refused to look at insurance protection against new events thereafter.

Reilly said, “Even though we have been telling our clients, which are predominantly SMEs, that they really do need to consider cyber liability, a lot of buyers are still reluctant to purchase insurance.” &

Rodrigo Amaral is a freelance writer specializing in Latin American and European risk management and insurance markets. He can be reached at [email protected].

How a Carrier Partner Can Help Navigate a Challenging Management and Professional Liability Market

A combination of a choppy economy with increased claims frequency and severity could lead to rate increases in the Management & Professional Liability market.

By: Risk & Insurance | April 3, 2024

Rates in the management & professional liability (M&PL) markets were on the rise from 2020 to early 2023 and are now falling rapidly.

M&PL divisions manage a number of different insurance products including management liability (D&O), professional liability (E&O), employment practices liability (EPL), fiduciary liability policies, cyber, etc. In 2023 and into 2024, a big influence on the marketplace has been the extremely aggressive and softening public company D&O market.

Though these rates have been softening for management liability, that may change over the next few years as companies continue to adjust their business models motivated by economic uncertainty. Layoffs were up nearly 200% last year, Forbes reported, even as other recession indicators, like the inflation rate, improved. A recession could lead to an increased claim activity and force carriers to raise rates.

“Whenever there is a meaningful downturn in the economy, we tend to see claim frequency pop up,” said George Schalick, Jr., senior vice president of the Management and Professional Liability Division at Philadelphia Insurance Companies (PHLY).

With continued fiscal uncertainty, businesses potentially already burdened with pandemic-related claims should seek a carrier with a long history in M&PL products. They will provide much-needed risk management guidance and be better positioned to support their insureds during market fluctuations.

Why Insureds Might See an Uptick in M&PL Claims

George Schalick, Jr., Senior Vice President of the Management and Professional Liability Division, Philadelphia Insurance Companies

The current soft market might come as a bit of a surprise as it does not track with previous underwriting cycles and economic conditions. Afterall, many privately held and non-profit organizations struggled during the early days of the pandemic with shutdowns and rapidly declining revenues. But the Government assistance programs, like the Paycheck Protection Program loans, helped keep many afloat during the tough times.

“During COVID many organizations stopped doing business until they were able to sort out all of the health and safety challenges,” Schalick said. “They were forced to lock down, but then all the government assistance programs allowed them to keep people employed. The increased volume of claims we anticipated we would see coming from the lockdowns and restrictions that were imposed upon businesses in the U.S. didn’t manifest at first.”

“Just because there wasn’t an onslaught of reported claims at the beginning of the pandemic, doesn’t mean the circumstances that would give rise to a claim being reported didn’t occur. Courts and the judicial system were closed or slowed and now that they are back open, we’re starting to see the circumstances that occurred during the COVID lockdowns becoming claims today,” Schalick said. “Litigation is progressing.”

Added to the delayed pandemic litigation is a concern over newer claims that might be filed as the country inches toward an economic downturn. Though a recession was avoided in 2023, experts think a soft dip could occur in 2024, with 76% of economists saying there’s a 50% or less chance of an economic downturn this year — that almost always results in more management liability claims.

“During the Great Recession in 2008, we saw an almost immediate spike in claims because of the economic conditions and the pressure it placed on organizations. They were making personnel changes with significant belt tightening almost immediately.” Schalick said.

What’s in Store for M&PL Policy Rates in 2024?

Despite an uptick in claims and increased economic uncertainty, management liability rates haven’t increased, resulting in market-wide pricing levels that may not meet the increased pressure of rising settlements and jury verdicts.

“Rates are going the other direction and settlement values are not falling,” Schalick said.

The mismatch between rates, claim frequency and severity is, in part, because carriers experiencing the dramatic soft market in the public D&O market are seeking premium gain in the private and non-profit market.

“In the public company market, the rates have been decreasing significantly. The rates were increasing in the private, not-for-profit market, and rightfully so, but there’s a desire to supplement overall mid-size D&O for carriers who also write private not-for-profit, and they see that as an opportunity to aggregate premium,” Schalick said. “So the always competitive landscape in the private, not-for-profit market has dramatically increased in the last 18 to 24 months.”

Still, companies of all sizes and types should be concerned about management liability rates in the future. Legal system abuse is resulting in increases in both the amount of litigation and the size of verdicts plaintiffs are receiving.

Certain areas of the country are particularly vulnerable to this type of legal system abuse. As a result, insureds in these localities are likely to be vulnerable to rate increases.

“The environment is so positive for the plaintiff that forces premium increases so carriers are able to stay in that market long term,” Schalick said.

Why a Tenured Carrier Partner Can Help Insureds Navigate An Uncertain Market

It’s clear that insureds are facing an uncertain M&PL market over the next few years. Fortunately, carriers with a long history in the M&PL space will be there to offer stability.

Philadelphia Insurance Companies has been supporting this market for 35 years. PHLY is committed to offering long-term rate stability, even as economic and claims trends start to push premiums upwards. They have an appetite for all sorts of companies, large and small, for-profit and nonprofit alike.

“We’ve been at this game for a long time and are one of the most tenured underwriters in this space,” Schalick said. “We like to stay very consistent.”

PHLY has worked with both for-profit and non-profit on management liability policies. With dedicated M&PL teams throughout the company’s 13 regions, PHLY provides the support agents and brokers are looking for on behalf of their clients. The teams know their regions well and can respond to local trends. They’re also dedicated to making the renewal process as easy as possible for their partners and policyholders.

“We have real confidence in our results, so we focus a lot on making the renewal experience as painless as possible for all agents and insureds,” Schalick said.

The company is also investing in tools to help insureds avoid losses. Earlier this year, they launched a new online risk management platform, PHLYGateway, which offers resources for insureds on how to create an employee handbook and trainings on issues such as recognizing workplace sexual harassment and discrimination.

If insureds have questions, they can consult a Best Practices Help Line, provided via the platform. That way, they can get on the spot risk management guidance to help them prevent claims.

To learn more, visit: https://www.phly.com/mplDivision/managementLiability/default.aspx.

This article was produced by the R&I Brand Studio, a unit of the advertising department of Risk & Insurance, in collaboration with Philadelphia Insurance Companies. The editorial staff of Risk & Insurance had no role in its preparation.