India’s Cyber Insurance Business Is Flourishing

Cyber risk is a major threat to Indian businesses today as companies increasingly face new vulnerabilities due to exposure.

In an exclusive interview with BW Businessworld, Rahul Mohata COO, Ideal Insurance speaks about how organisations can minimise the financial impact due to a cyber-attack if they opt for an insurance, awareness among businesses regarding cyber-attacks and more.

Here are some extracts:

How can organisations minimise their financial impact if they opt for cyber liability insurance?

All businesses now are dependent on the use of technology specially internet and cloud, which makes them vulnerable of cyber-crime and online data theft and misuse.

Cyber liability policies are indemnity policies and cover any loss which may arise because of the peril covered under the policy. The client based on his assessment or legal requirement buys a policy with an indemnity amount. The insurer generally covers privacy breach liability, cyber extortion, business interruption losses, liability from multimedia and public relations costs, legal expenses and data theft liability.

If the data is stolen or hacked, the insurer will pay for any legal cost which the insured pay if there is a suit filed in a court of law. The Insurer will also indemnify the amount awarded by the court of law subject to admissibility of the claim by the Insurer.

Do you see the awareness among businesses regarding cyber-attacks in India?

The 'Internet Security Threat' report that was released in 2013 by Norton (Symantec) has stated India has 42 million cyber-crimes every year. On a regular basis we come across press reports on breach of cyber security by way of attacks such as malware, viruses, hacking, scams, fraud and theft.

Though the large corporates are still aware and work towards cyber security, but the mid-size and small enterprises are highly vulnerable towards such risk due to lack of awareness.

In a data driven world, if a company suffers a data breach but can’t monetise the value of that data, how can this insurance help?

Since the insurance cover is for paying for any legal cost which the insured pay if there is a suit filed in a court of law. The insurer will also indemnify the amount awarded by the court of law subject to admissibility of the claim by the Insurer. Hence, the question of monetising the data does not arise in this case.

Do you believe that companies in India compromise with their cyber security?

There are corporate who have taken this policy. However, there is a huge gap and it is mostly due to lack of awareness and has become obligatory and not mandatory as the check and balances are not yet in place.

How has been the response like especially when MSMEs in India are not very active on this front?

The smaller firms are often hit hardest by a cyber-attack but unfortunately lack of awareness about cyber risk prevents most of the MSMEs in India from adopting key cyber security initiatives. But very soon companies of every size will demand cyber insurance, as most of the businesses are depended on technology.

How do you make this insurance policy customer friendly?

These policies are tailor made and as per requirement of the customers. Cyber risk affects industries such as technology and financial institutions differently so tailor made solutions suiting each client segment is suggested. Due diligence is specially done for companies with internet-related operations and large technology-related and also for those storing a large quantity of customer data.

Cyber-attacks on cloud environments have reached the same level as attacks on traditional IT infrastructures, and it seems likely that the trend towards cyber-attacks on cloud based infrastructures will see further increases. So, do you provide insurance against such attacks?

Yes, covers are available for such risks. In these cases, the cloud based service provider will have to take insurance which will protect him against any perils of cyber-attack and breach which will result in loss to his customers who store their data on their cloud based services.

Since cyber-space has become highly vulnerable, do you believe that some years down the line, there will be a huge surge in such insurance policies?

The cyber insurance market is already flourishing owing to the increase in cyber-attacks. And in the coming years the market is expected to grow at double-digit figure, and a significant surge in demand for cyber insurance policies is also predicted.

Business World

You Might Also Read:

Cyber Insurance Report - 2017/8 (£):

Businesses Need Cyber Insurance – Now:

 

 

« Universities Are Targets For Cyber Criminals
The EU Holds Its First Cyber War Game Exercise »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

Infosecurity Europe, 3-5 June 2025, ExCel London

Infosecurity Europe, 3-5 June 2025, ExCel London

This year, Infosecurity Europe marks 30 years of bringing the global cybersecurity community together to further our joint mission of Building a Safer Cyber World.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

Internet Security Alliance (ISA)

Internet Security Alliance (ISA)

ISA is an international trade association providing thought leadership in advancing a sustainable system of cyber security.

International Telecommunication Union (ITU)

International Telecommunication Union (ITU)

ITU is the United Nations specialized agency for information and communication technologies – ICTs. Areas of activity include cybersecurity.

European Recruitment

European Recruitment

European Recruitment is an award-winning, international recruitment agency specialising in niche technology areas including Cyber Security.

Seric Systems

Seric Systems

Seric is a technology business specialising in security, infrastructure and data management.

Threatspan

Threatspan

Threatspan is a cybersecurity firm helping shipping and maritime enterprises achieve and maintain nautical resilience in an age of increasing cyber threats.

RiskRecon

RiskRecon

RiskRecon makes it easy to gain deep, risk contextualized insight into the cybersecurity risk performance of all of your third parties.

Iowa Cyber Hub

Iowa Cyber Hub

Iowa Cyber Hub is a cybersecurity education partnership between Iowa State University and Des Moines Area Community College.

Defensity

Defensity

Defensity offer bespoke & pre packaged IT Security Solutions for Small business to help companies reduce overall IT related risk.

Tangible Security

Tangible Security

Tangible employs the most sophisticated cyber security tools and techniques available to protect our clients’ sensitive data, infrastructure and competitive advantage.

Content+Cloud

Content+Cloud

Content+Cloud is a leading technology services business and Managed Services Provider (MSP) with a genuine passion for helping your organisation to succeed, whatever your ambitions.

National Cyber Security Center (NCSC) - Vietnam

National Cyber Security Center (NCSC) - Vietnam

National Cyber Security Center of Vietnam has a central monitoring function and is a technical focal point for monitoring and supporting information security for people, businesses and systems.

NAK Consulting Services

NAK Consulting Services

NAK is helping organisations to create Secure, Agile IT Environments. Our goal is to be the trusted advisor and managed service partner for our clients.

Kompleye

Kompleye

Kompleye is a recognized cybersecurity and compliance audit organization that offer a comprehensive solution for different industries.

J.S. Held

J.S. Held

J.S. Held is a global consulting firm providing technical, scientific, and financial expertise across all assets and value at risk.

Edera

Edera

Edera is changing the way containers are run and secured, making isolation a reality and fundamentally transforming computing in the process.

CyberMass

CyberMass

CyberMass provides Cyber Advisory/Consulting, Professional and Managed Services offering complete cybersecurity as a service protection to businesses.