Guidewire Cyence: Guiding the Future of Cyber Risk Management at the US Treasury (ACRSM)

In early February 2024, I had the honor of representing the Guidewire Cyence team and participated in a pivotal meeting hosted by the Advisory Committee on Risk-Sharing Mechanisms (ACRSM). This esteemed gathering, aimed at advising the Federal Insurance Office (FIO) on risk-sharing mechanisms and the administration of the Terrorism Risk Insurance Program, marked a significant moment for the cyber insurance industry. Alongside our peers we engaged in rich discussions about the evolution and future of cyber risk management, underscoring the importance of public-private collaboration in addressing the challenges posed by cyber threats.

The ACRSM meeting focused on several critical areas, including the availability and affordability of terrorism risk insurance, the upcoming International Forum of Terrorism (Re)insurance Pools conference, and, notably, the intricacies of cyber insurance. It underscored the importance of developing non-governmental, private market risk-sharing mechanisms for protection against cyber losses. Our participation reflected Guidewire’s commitment to advancing the understanding of cyber risk and its implications for the insurance industry.

Cyber Risk: An Evolving Landscape

The discussions highlighted the rapid maturation of the cyber insurance market and models over the past decade. I focused my presentation on the dynamic nature of cyber threats, pointing out the significant strides made in collecting attritional and catastrophic event data. This data enrichment over the past five years has enhanced our ability to train and validate models, offering deeper insights into the complexities of cyber risk in an ever-evolving digital landscape.

Collaboration and Innovation

A key theme of our discussions was the necessity for continued collaboration and innovation within the cyber insurance space. The advent of significant cyber incidents, such as the WannaCry and NotPetya attacks, has prompted a public conversation about the high stakes of cyber security. Guidewire Cyence, through its advanced analytics and modeling capabilities, is at the forefront of these discussions, and the Guidewire Cyence team is regularly providing solid recommendations and insights that help organizations navigate the complexities of cyber risk.

The Path Forward

Our engagement with the ACRSM and the broader cyber risk community is a testament to Guidewire’s role as a thought leader in this critical field. We advocate for enhanced data collection and standardization, akin to the efforts seen in natural catastrophe modeling, to improve the accuracy and effectiveness of cyber risk models.

We are poised to continue our collaboration with industry peers, regulatory bodies, and government entities to enhance the understanding and management of cyber risk. Together, we can build a more secure and resilient digital world for businesses and communities alike.

Guidewire Cyence: Pioneering Solutions for Tomorrow's Challenge

At Guidewire, we are driven by the conviction that the intersection of technology, analytics, and cybersecurity can provide unprecedented opportunities to address the challenges of cyber risk and underscore our mission to help reduce risk and make the world more insurable. Cyence has delivered advanced cyber risk modeling to the industry since 2014 and is on a 6th generation model that is data driven, well documented, and provides highly granular outputs, which support a broad spectrum of users and use cases — from end clients, to insurance brokers, underwriters, actuaries, and enterprise risk managers, to reinsurance brokers, reinsurers and ILS funds, and S&P, the world's largest rating agency. This inclusivity ensures that every stakeholder has access to detailed, actionable insights, driving informed decision-making and more effective risk management strategies across the board.

Our participation in the ACRSM meeting is a reflection of our dedication to this cause, and we look forward to contributing our insights and solutions to shape the future of cyber risk management.

Learn more about how Guidewire Cyence delivers cyber risk analytics that help insurers underwrite, manage, and transfer cyber risk with confidence: https://www.guidewire.com/products/cyence/.