Apr 17, 2018

Cyber & Construction: Understanding Your Risks

From last year’s Equifax breach to the highly publicized WannaCry and NoPetya attacks, cyber incidents have quickly become one of the top risks facing companies across almost every vertical. Chubb, the world’s largest property and casualty insurer, found that 93 percent of small and midsized businesses have reported experiencing a cyber incident that severely impacted their operations.

Unfortunately, the construction industry is not exempt from this growing threat.

As contractors become more reliant on technological integrations such as Building Information Modeling (BIM) and telematics software, companies are simultaneously exposed to the increased risk of a cyber incident. Cybercriminals could gain access to intellectual property such as architectural assets, financial information and even personal employee data, if it’s not properly protected. For example, Turner Construction was the victim of a company-wide breach in 2016 that exposed the names and social security numbers of its nearly 6,000 workers, after an employee unknowingly sent sensitive data to a fraudulent email address.

However, there are several strategies construction firms should consider to decrease the likelihood of a cyber event. To start, employees are often unknowingly the initial source of the breach – such as the case with Turner Construction. According to the Identity Management Institute, 90 percent of all successful cyber-attacks began with an employee. Therefore, all personnel should be regularly trained on security procedures and required to frequently update passwords. In addition, if employees are accessing data from a mobile device, the company’s network must have data encryption software and employees will need to have the device password protected.

Combined with frequent training and continued cyber education, companies can take several steps to guarantee its intellectual property is protected. For example, security software should be installed that offers automatic updates and real-time protection. Aside from computer software, data should be frequently backed-up using a reliable cloud storage provider. Having a robust security program is key to preventing a costly data breach and firms should seriously consider hiring an in-house security expert to ensure data is protected.

If the victim of a cyber incident, construction companies will incur heavy costs associated with the security failure. What many contractors don’t realize is that the largest exposure is related to incident response and first-party loss – including forensics, business interruption, digital data recovery and extortion. For instance, what happens if a company can’t access job data or order information because its systems were taken offline? This delay in operations alone could cause a significant loss in revenue. According to claims analyzed by Chubb over a three-year period, the average costs of forensics after a cyber incident was more than $230,000.

For many contractors, one of the most valued benefits of a cyber insurance policy is having access to a specialized incident response team and experienced claims representatives. Having these individuals as an extension of your team is invaluable, as they are trained to work closely with your organization to walk you through exactly how the breach occurred. Working hand in hand with your insurance broker to identify potential cyber risks facing your specific operation can also help to ensure you’re protected with proper insurance policies and adequate limits. Your insurance broker can serve as a true risk management consultant, helping to identify and implement strategies that limit exposures.

Shane Riccio
Producer
The Graham Building
Philadelphia, PA, 19102
215-701-5299

SAVE AS PDF >

LOOKING FOR

MORE INFORMATION?

We’re happy to answer any and all of your questions. Let us help you find coverage solutions that work best for you.
contact us >

Similar posts

What You Need to Know About Cyber Liability Insurance

In today’s news headlines, a week doesn’t pass without a mention of a large company experiencing some type of cyberattack or breach. Examples of high-profile cyberattacks in the news over keep reading >

Ask The Expert: Builders Risk Insurance

What is builders risk insurance? Builders risk insurance is a specialized type of property insurance designed for buildings under construction or renovation and covers the materials, supplies and equipment that keep reading >

Trend Report: The Collaboration, Innovation & Risk Management Behind Penn Medicine’s $1.5 Billion Hospital Pavilion

Penn Medicine’s 16-story, $1.5 billion New Patient Pavilion is one of the most high-profile construction projects in Philadelphia today. When it opens in 2021, the new LEED-certified hospital will include keep reading >

What to Do After a Construction Accident

Although most construction leaders and workers make job-site safety a top priority, approximately 150,000 construction-related accidents still occur each year, according to the Board of Labor Statistics. That’s more than keep reading >