Ransomware attacks are escalating, with more frequent and sophisticated attacks being seen globally in the past year.
Whilst prevention is key, it is equally important that organisations are ready to respond in the event a ransomware attack is succeeds.
Key objectives
- Our Ransomware Readiness Workshop is designed to help your organisation understand from an insurance perspective:
- The evolving ransomware landscape and claims trends unique to your industry that we see here at Marsh.
- The roles and responsibilities of external and internal participants, and how that aligns with the insurance process.
- The lifecycle of a ransomware claim and common pain points to avoid in order to maximise recovery under your policy.
- Your decision making framework, including whether to engage or not engage with the threat actor group and pay or not pay the ransom demand.
- Any procedural deficiencies in your pre, during and post ransomware response plan.
- Our insight to help your organisation avoid response paralysis and recover quickly from a ransomware attack.
Who should attend
We recommend up to ten people attend the workshop. Ideally, it will involve all the key decision makers within your organisation in the event of a ransomware incident. We have often been advised by our clients that the following attendees have benefited greatly from the workshop:
- Insurance/ risk manager
- Legal counsel
- Chief information security officer
- IT and management personnel
- Member(s) of your board
Ransomware as a case study
Have you always wondered:
- How does your policy responds to a ransomware claim?
- Who makes the decision to pay or not pay the ransom demand?
- What assistance is available to negotiate with the threat actor demanding a ransom to be paid?
- What is the due diligence process before making payment of a ransom demand?
- What technical assistance is available in any recovery process?
FAQs
Why Marsh
As experts in enterprise and cyber risk, we help you take an enterprise wide, scalable approach in building your cyber resilience.
Together, we identify your risks, and develop a best-for-you program and team of partners to help manage it.
Informing your approach and decision-making process with our 25 years of cyber expertise and data-driven insight. So that your path to cyber resilience is more productive and predictive; and your outcomes are more efficient and effective.
This publication is not intended to be taken as advice regarding any individual situation and should not be relied upon as such. The information contained herein is based on sources we believe reliable, but we make no representation or warranty as to its accuracy. Marsh shall have no obligation to update this publication and shall have no liability to you or any other party arising out of this publication or any matter contained herein. LCPA 23/167.