From Risk to Reward: E-business is transforming risk. Insurer AIG is transforming the way organizations manage that risk. (CaseStudy).The dot-com bubble Refers to the late 1990s during which countless Internet companies were riding an enormous wave of enthusiasm that pushed their stock valuations into the stratosphere even though they never made a penny. may have burst, but e-business continues to transform companies in profound ways. As the Internet opens corporate networks to an expanding universe expanding universe: see universe. expanding universe Current understanding of the state of the universe. It is based on the finding that all galaxies are moving away from each other. of employees, partners and customers, it exposes organizations to entirely new risks. From protecting against cyber-attacks to safeguarding customer privacy, companies must fundamentally rethink the way they manage risk and protect their most vital assets. For insurance companies such as the member companies of American International Group
American International Group, Inc. (AIG) (NYSE: AIG; TYO: 8685 ) is a major American insurance corporation based in New York City. , Inc. (AIG AIG addressee indicator group (US DoD) AIG American International Group, Inc AiG Answers in Genesis (religious group in defense of Scripture) AIG Artificial Intelligence Group AIG Australian Industry Group ), that means transforming products and services to help protect customers as they adapt to the Internet economy The Internet Economy refers to conducting business through markets whose infrastructure is based on the Internet and World-Wide Web. An Internet economy differs from a traditional economy in a number of ways, including: communication, market segmentation, distribution costs, and price. . That's why the New York New York, state, United States New York, Middle Atlantic state of the United States. It is bordered by Vermont, Massachusetts, Connecticut, and the Atlantic Ocean (E), New Jersey and Pennsylvania (S), Lakes Erie and Ontario and the Canadian province of firm created AIG eBusiness Risk Solutions in January 2000, and introduced insurance products that address risks associated with e-business. "We recognized that the Internet would have a dramatic impact on the lives of our customers and the risks they faced," says Gretchen Hayes, president of AIG eBusiness Risk Solutions. "We needed to respond?." The changing risks reflect the changing way companies use information technology. Not that long ago, computers were kept behind locked doors, and computer networks were accessed only by select groups of employees. Managing those networks was all about keeping people out. But as companies have recognized the promise of e-business, they have also opened up the network -- through e-mail, Web sites and a growing range of e-commerce activities. In doing so, they have exposed themselves to a passel of security threats, from this summer's Code Red worm to the denial-of-service attacks that brought down Amazon.com, eBay and other sites last year. "Risk has changed forever as a result of the Internet," says Ty R. Sagalow, chief operating officer Chief Operating Officer (COO) The officer of a firm responsible for day-to-day management, usually the president or an executive vice-president. of AIG eBusiness Risk Solutions. "Even if you don't Even If You Don't is a single released by the band Ween in 2000 on Mushroom Records. Formats Enhanced CD single Includes the quicktime video of "Even If You Don't" directed by Matt Stone & Trey Parker of "South Park". conduct business on your Web site, if your employees use e-mail, you have opened your systems to the world." Companies have responded to this new, risky frontier by investing ever-greater resources in protective measures such as antivirus software See antivirus program. (tool) antivirus software - Programs to detect and remove computer viruses. The simplest kind scans executable files and boot blocks for a list of known viruses. , firewalls and intrusion-detection systems. But experts agree that even the most Herculean security efforts won't provide 100 percent protection. So increasingly, companies are looking to insurance policies as a way to augment their security defenses. E-business insurance policies are fundamentally different from their brick-and-mortar counterparts. Whereas risk management has traditionally covered physical assets, in the Internet economy it involves the bits that reside in databases and traverse the network, as well as intangibles such as corporate reputation. A good policy, experts say, covers issues such as viruses, security breaches, data damage, and the expenses and losses associated with e-business interruption. It also addresses growing threats such as cyber-extortion and the loss of intangible property intangible property n. items such as stock in a company which represent value but are not actual, tangible objects. such as trade secrets, as well as legal liabilities that cause financial damage to others resulting from inadequate network security, professional errors or omissions, and "Web content injury" -- things like copyright infringements and privacy violations. The new division was necessary, says Hayes, because "we recognized that these risks were fundamentally different, and they wouldn't fit easily into our current product groups. The analysis of these risks requires specific expertise." Perhaps more important, e-business insurance would require tight integration with technology. "It was the right thing to do from the customer's perspective," Sagalow says. "If a hacker destroys your data, you don't want your claim to be looked at by a guy who spends his day handling fire-destruction claims." Working with consumers and corporations involved in both B2C (Business to Consumer) Refers to a business communicating with or selling to an individual rather than a company. See B2B. and B2B (Business to Business) Refers to one business communicating with or selling to another. See B2B e-commerce, B2C and B2G. B2B - business to business activities, the new division has introduced several products and services, among them the AIG netAdvantage Suite, which provides coverage options ranging from Web content-related exposures to professional liability, from e-business interruption to hacker attacks. It also maintains a cyber-criminal reward fund and public relations public relations, activities and policies used to create public interest in a person, idea, product, institution, or business establishment. By its nature, public relations is devoted to serving particular interests by presenting them to the public in the most insurance. The reward fund pays $50,000 for information leading to the arrest and conviction of someone who has hacked into the insured's systems. The public relations insurance provides $50,000 in reimbursement to help policyowners explain to their stakeholders Stakeholders All parties that have an interest, financial or otherwise, in a firm-stockholders, creditors, bondholders, employees, customers, management, the community, and the government. why there was a security breach and how the situation is being addressed. Before they can be accepted, applicants must undergo a security-risk assessment. AIG worked with one of its technology alliances, Unisys Corp., to develop a Web-based risk-assessment tool, available at www.aignetadvantage.com. By answering questions online, companies receive a free report that reveals potential security weaknesses. For applicants interested in $5 million or more in coverage, a two-day onsite assessment can delineate security weaknesses and suggested solutions. Regardless of whether the applicant elects to purchase the insurance, the assessment analysis and report are free. Response to AIG net Advantage and AIG's other e-business insurance offerings has been tremendous, Hayes reports. With more than 1,200 clients, AIG is recognized as the largest provider of e-business risk insurance worldwide. What's more, the lessons learned by MG eBusiness Risk Solutions are benefiting the rest of AIG. For example, the company is learning to better integrate technology throughout its operations. "Like many big companies, we traditionally had technology in one group and business in another," Hayes explains. "If the business side had a need, they threw it over the wall and hoped the technology people got it right." But that approach is changing as technology becomes more integral. "The result is that we're moving faster and becoming more responsive to customer needs," she says. Not surprisingly, AIG's customers are pursuing the same goals. "The Internet is changing risk management and it's changing business in general," says Sagalow. "And we still don't know Don't know (DK, DKed) "Don't know the trade." A Street expression used whenever one party lacks knowledge of a trade or receives conflicting instructions from the other party. what all those changes will entail." But for AIG and its e-business customers, change is good. |
|
||||||||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion