Cyber Security Insurance
The link below from the Department of Homeland Defense is a great starting point for cyber security insurance research and offers some information on the federal round table discussions revolving around the topic.
DHS Cyber Security Insurance Publication
Before investing in cyber security insurance do some research, gather information from the major security resources identified on this site, and understand the types of data you have within your organization (HIPAA, CJIS, FERC, NRC).
Cybersecurity insurance is designed to mitigate losses from a variety of cyber incidents, including data breaches, network damage, and cyber extortion. The Department of Commerce has described cybersecurity insurance as an “effective, market-driven way of increasing cybersecurity” because it may help reduce the number of successful cyber attacks by promoting widespread adoption of preventative measures; encouraging the implementation of best practices by basing premiums on an insured’s level of self-protection; and limiting the level of losses that companies face following a cyber attack. Many companies nevertheless forego cybersecurity insurance altogether. They cite its perceived high cost, a lack of awareness about what it covers, and uncertainty that they’ll suffer a cyber attack as just some reasons for their decision.