• corporate
  • Security

Exploring the complexities of cyber insurance with Harpreet Mann

Executive Summary: Delve into the intricacies of cyber insurance with expert Harpreet Mann, as she sheds light on the challenges of risk assessment and the necessity of aligning cybersecurity practices with insurance policies.​

This article:

  • Features insights from Harpreet Mann on the evolving landscape of cyber insurance.
  • ​Discusses challenges in risk assessment and policy coverage.​
  • Highlights the importance of aligning cybersecurity measures with insurance requirements.

Introduction

In the fourth episode of Resilience Rising, Sean Costigan, Managing Director of Resilience Strategy at Red Sift, delves into the intricacies of cyber insurance with Harpreet Mann, President of Amynta Trade Credit and Political Risk Solutions. Drawing on her extensive experience in insurance and risk management, Harpreet sheds light on the challenges and transformative potential of cyber insurance in today’s rapidly evolving threat landscape.

Navigating the challenges of cyber insurance

Cyber insurance has become a critical method for managing risk in this era of increasing cyberattacks. However, as Harpreet explains, the industry is grappling with a unique combination of high-frequency and high-severity events, including spectacular ransomware attacks, that challenge traditional insurance models. Unlike other insurance lines, which tend to balance low-frequency, high-severity risks or high-frequency, low-severity risks, cyber insurance struggles to maintain profitability under the strain of both. 

Additionally, Harpreet addresses the concept of “silent cyber”—policies that fail to explicitly include or exclude cyber risks. This ambiguity has pushed regulators and insurers alike to clarify coverage terms, a move championed by organizations like Lloyd’s of London. Clear policy language is critical for managing expectations and ensuring alignment between insurers and policyholders.

Incentivizing better cybersecurity practices

One of the transformative opportunities in cyber insurance lies in its ability to drive improved cybersecurity practices. Harpreet explains how insurers reward businesses with robust cybersecurity measures by offering more favorable premiums. This creates a symbiotic relationship where insurers incentivize stronger defenses, ultimately reducing risk exposure for all parties.

However, she notes the challenges faced by smaller and medium-sized enterprises (SMEs), which often struggle to meet the stringent requirements for cyber insurance. Harpreet underscores the potential role of public-private partnerships, including reinsurance backstops, to make cyber insurance more accessible while fostering a culture of shared responsibility. After all, just over a year ago the head of Zurich, Mario Greco, told the Financial Times that cyber was shaping up to be “uninsurable.”

Geopolitical risks and cybersecurity

Our conversation also explores the intersection of geopolitical instability and cybersecurity. Harpreet cites the NotPetya attack on Merck as a stark example of how state-sponsored cyber warfare can destabilize businesses and nations alike. The growing use of cyberattacks as geopolitical tools underscores the need for comprehensive risk management strategies that address both the private and public sectors.

“What’s interesting here is establishing. ‘Okay, what does war mean?’ and if war is between two states, can they draw the line that cyber attack was truly a war act by a state actor.”

Harpeet Mann

President of Amynta Trade Credit and Political Risk Solutions

A path forward for cyber insurance

Looking ahead, Harpreet emphasizes the importance of adaptability in the cyber insurance industry. She envisions a future where insurers, regulators, and businesses collaborate to create more sustainable and precise policies. By addressing challenges such as ransomware coverage and clarifying war exclusions in policies, the industry can better serve its clients while maintaining stability.

“I do think cyber will get there. The question for the industry is, is it a good practice to cover ransomware?”

Harpreet Mann

President of Amynta Trade Credit and Political Risk Solutions

Listen to the full episode

Gain deeper insights from Harpreet Mann on how cyber insurance can evolve to meet today’s challenges by listening to the full episode of Resilience Rising. The discussion offers valuable perspectives for cyber and insurance industry professionals, policymakers, and anyone interested in the future of cybersecurity and risk management.

For more updates and insights, follow:

Stay tuned for more episodes of Resilience Rising as we explore critical topics shaping the cybersecurity landscape.

PUBLISHED BY

Red Sift

14 Jan. 2025

SHARE ARTICLE:

Categories

CybersecurityPodcastResilience Rising

Related articles

Stream Red Sift telemetry to Sentinel, Splunk, and more with Event HubHow the EU can mandate for stronger email securityEurope’s #1 for DMARC: Red Sift OnDMARC does it againHealthcare and cybersecurity: 73% of breaches lack DMARC enforcementVMC and CMC: What are the new requirements?

Recent Posts

VIEW ALL
Product Release
1 Jul. 2025

Stream Red Sift telemetry to Sentinel, Splunk, and more with Event Hub

Francesca Rünger-Field

Event Hub is a new capability that streams real-time, structured security events from Red Sift products into the platforms security teams already use: SIEMs, SOARs, XDRs, ticketing tools, messaging platforms, and cloud storage. It enables faster, more consistent response by pushing telemetry directly into the workflows where detection, triage, and remediation already happen. Whether…

Read more
Thought Leadership
25 Jun. 2025

How the EU can mandate for stronger email security

Antony Seedhouse

Executive summary: The article examines how the EU can proactively close email security gaps by leveraging the NIS2 Directive to mandate robust, harmonized standards like DMARC, DKIM, and SPF across all member states. By acting now, the EU not only protects its digital ecosystem but also sets a global benchmark for cybersecurity best practices.…

Read more
News
24 Jun. 2025

Europe’s #1 for DMARC: Red Sift OnDMARC does it again

Francesca Rünger-Field

G2’s Summer 2025 Report has landed, and we’re proud to share that Red Sift OnDMARC remains the #1-rated DMARC solution in Europe. This marks another strong season for OnDMARC, with continued recognition across G2’s category reports. We were featured in 18 reports this quarter, taking top spots in the Mid-Market Results Index and Mid-Market…

Read more
Cybersecurity
23 Jun. 2025

Healthcare and cybersecurity: 73% of breaches lack DMARC enforcement

Faisal Misle

The healthcare sector has become a target for both low-level and occasionally spectacularly successful cyberattacks. Hospitals, insurers, medical supply chains, service and medical providers are prime targets for threat actors, with email phishing attacks, ransomware, and data breaches on the rise. In 2024, 94% of U.S. healthcare organizations experienced a cyberattack, with the average…

Read more
Red Sift Logo

PLATFORM

The Red Sift Pulse Platform

Internet-scale cybersecurity intelligence meets trusted AI.
OnDMARC

Protect against phishing and BEC attacks.
Brand Trust

Stop brand abuse, fraud and lookalike attacks.
ASM

Continuously discover and manage external-facing and cloud assets.
Certificates

Real-time discovery and seamless monitoring for certificates.

INNOVATION

CUSTOMERS

Resources

Company