Risk Nexus – Beyond Data Breaches: Global Interconnections of Cyber Risks
This report is the result of a year-long effort between Zurich Insurance Company Ltd and the Atlantic Council, a project which encompassed meetings on four continents and consultations with cyber experts and risk professionals across different industries.
The growing number and sophistication of cyber attacks is threatening to outstrip our efforts to increase resiliency against them. Cyber-risk management needs to look beyond the internal information technology (IT) enterprise to other aggregations of risk, such as outsourcing and contractual agreements, supply chain, upstream infrastructure, and external shocks. There are fortunately several prudent actions which will help now, not least to shift resources to resilience rather than prevention.