New Report From Zurich Looks at Cyber Challenges

3 October 2025 alastair walker News 0

After the JLR attack cyber cover and security are top of the list for many companies in the UK, including insurers. Here’s the word from Zurich on beefing up online security;

Zurich Insurance Group (Zurich), together with the Cyber Threat Alliance and CyberGreen Institute, has published a new report “Enhancing cyber security: Key metrics for policymakers” urging the adoption of standardized national cyber security metrics. The report notes the global cyber risk protection gap of USD 0.9 trillion, with insured losses covering only 1% of economic losses from cyber incidents.

The measures proposed in Zurich’s 2024 whitepaper, “Closing the Cyber Risk Protection Gap”, rely on robust quantitative data to enhance standards and best practices. While organizations like ENISA and CISA provide corporate-level frameworks, national metrics for policy decision-making are largely absent. Zurich’s new report introduces six key metrics and an institutional framework for governments to help clarify national cyber risk, strengthen resilience, and enable informed policy decisions:

  1. Percentage of organizations with cyber insurance or audit certification: Measures preparedness and understanding of cyber security.
  2. Proportion of exploited vulnerabilities older than one year: Indicates ecosystem defence and remediation speed.
  3. Number of significant cyber incidents: Reflects national detection and analysis capabilities.
  4. Average time to containment of cyber incidents: Demonstrates ability to halt the spread of threats.
  5. Mean time to restore operations: Assesses speed of recovery after incidents.
  6. Percentage of unfilled cyber security positions: Gauges workforce capacity to manage risks.

Establishing National Cyber Statistics Bureaux – dedicated institutions for collecting these metrics – would ensure consistent incident reporting, track threats and resilience, publish key analyses, and assess security regulation effectiveness. These bureaus could also support a supra-national body to aggregate findings, enabling deeper global comparisons and insights into evolving threats.

To move from currently fragmented, reactive approaches to a unified, data-driven strategy, Zurich calls on policymakers to:

  • Collaborate on data collection: Move from reactive incident reporting to proactive, cross-sector data sharing
  • Establish dedicated entities: Create or empower national and global institutions to collect, analyse, and report cyber statistics across industries and borders
  • Harmonize standards and frameworks: Align definitions, benchmarks, and reporting protocols.

About alastair walker 19092 Articles
20 years experience as a journalist and magazine editor. I'm your contact for press releases, events, news and commercial opportunities at Insurance-Edge.Net
Twitter

Related Articles

InsureTech

Setoo Partners With Im Group on Flight Delay Cover

24 May 2019 alastair walker InsureTech 0

Setoo, the company that enables e-businesses to build and distribute personalised insurance and protection products, has reached an agreement with lm group to provide the European customers of one of the leading online travel agencies […]

Fraud

Fraud: Doctor Struck Off After Faking PI Report Evidence

20 April 2020 alastair walker Fraud 0

Horwich Farrelly, the leading insurance industry law firm, working in conjunction with LV=, one of the UK’s largest car insurers, has finally achieved its goal of seeing a doctor who had systematically falsified expert witness […]

Opinion

When Trade Tensions Rattle Buyers, Digital Insurance Keeps Them Confident

1 August 2025 alastair walker Opinion 0

This article is by Quentin Colmant, CEO & Co-Founder at Qover Nearly six in ten British motorists now let geopolitics guide their choice of car – a warning light most manufacturers still ignore. As tariff […]

Be the first to comment

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.