Last Day to Get an iPad mini, Surface Go 2, or Take $300 Off with OnDemand Training - Register Today!

ICS & Energy-Houston 2017

Houston, TX | Mon, Jul 10 - Sat, Jul 15, 2017
This event is over,
but there are more training opportunities.

Debunking the Myths about Cyber Insurance:

  • How Security and Cyber Insurance are Actually Hitting It Off
  • Jason Christopher
  • Tuesday, July 11th, 6:15pm - 7:15pm

There are many myths when it comes to cyber insurance and the role the insurance industry plays in a holistic cyber resilience strategy. Insurance has not always been popular among the security community, however, to reduce cyber risk across the organization, security leaders are looking at cyber insurance as a key consideration in the overall cyber security strategy. In this session, we will debunk the common myths and focus on realities of cyber insurance and the positive role the insurance industry plays in managing cyber risk and supporting a holistic cyber resilience strategy.

The Myths vs Reality:

‚Ę Myth: Cyber insurance policies force dubious security requirements and thresholds

‚Ę Reality: False; The current insurance marketplace features nearly 75 providers of coverage, the vast majority of which do not feature such terms.

‚Ę Myth: Cyber insurance policies don't pay claims.

‚Ę Reality: False; most cited claim denial cases are cherry picked and sensationalized, or flat out misrepresented. Cyber policies have a strong track record of paying claims for all industry classes for losses such as forensics expenses, incident response costs, business interruption losses and bricked technology assets.

‚Ę Myth: The only firms that invest in cyber insurance are those that are not confident in their cyber security; it's an admission of failure.

‚Ę Reality: Firms that purchase cyber insurance view it as a valuable financial control to effectively complement their traditional control set. How many security leaders set aside hundreds of thousands per year in a ‚rainy day‚ fund to pay for forensics and incident response?

In this session, we will walk through a real-world scenario in which an organization in the critical infrastructure space successfully partnered with the insurance industry to achieve its intended insurance coverage and make cyber program and organizational improvements to support the security leader‚s strategy.


Bonus Sessions

The following bonus sessions are open to all paid attendees at no additional cost. There are many different types of events that fall into these categories:

  • SANS@Night: Evening presentations given after day courses have ended. This category includes Keynotes.
  • Special Events: SANS-hosted events and other non-technical recreational offerings. This category includes, but is not limited to, Receptions and Information Tables.
Monday, July 10
Session Speaker Time Type
Analyzing CRASHOVERRIDE - The Grid Targeted Malware Robert M. Lee Monday, July 10th, 7:15pm - 8:15pm SANS@Night
Tuesday, July 11
Session Speaker Time Type
Debunking the Myths about Cyber Insurance: Jason Christopher Tuesday, July 11th, 6:15pm - 7:15pm SANS@Night
Wednesday, July 12
Session Speaker Time Type
ICS NetWars Wednesday, July 12th, 6:00pm - 9:00pm Special Events
Thursday, July 13
Session Speaker Time Type
SANS ICS Briefing: Robert M. Lee, Stuart Bailey (Waterfall Security), Nick Cappi (PAS), Jason Farmer (Arbor Networks) Thursday, July 13th, 4:00pm - 7:30pm Special Events