Broker Check

Top 10 Cybersecurity Controls

June 16, 2022

Kelly Geary writes in Risk & Insurance that cyber underwriters have mostly agreed on what network security controls they want in place. Here is the "top 10" list:

  1. Comprehensive multi-factor authentication with strong password  controls.
  2. Network sequestration and segmentation.
  3. Strong data backup strategy as part of a disaster recovery plan.
  4. Disabled administrative privileges on endpoints. 
  5. Regular and frequent security awareness training for employees.
  6. Endpoint detection response and anti-malware.
  7. A sender policy framework for email authentication.
  8. A 24/7 security operations center.
  9. A security information event management platform.
  10. Strong services accounts security in the active directory.                                                                                                                                                                          

The complete article is at riskandinsurance.com/top-10-cybersecurity-controls-commercial-underwriters-want-to-see/.