Cyber Insurance News & Information Podcast

The Authorization Gap: Cyber Insurance in the Age of Agentic AIThe Authorization Gap: Cyber Insurance in the Age of Agentic AI

Agentic AI can act on its own. So who controls what it does, and who pays when it goes wrong? Recorded live at the Scout InsurTech [https://www.scoutinsurtech.com/] Conference in Columbus, Ohio, this episode brings together four experts to unpack the authorization gap in agentic AI cyber insurance. The conversation digs into blame, liability, responsibility, controls, and implementation. You'll hear how underwriters classify AI risk, why most cyber policies already cover AI breaches, where carriers split on affirmative coverage, and what businesses should do first. Guests Julia Garcia-Trombley, US & Canada, CertX [https://www.linkedin.com/in/julia-garcia-trombley-656193164/] Jeremy Epstein, CEO, Mayflower Specialty [https://www.linkedin.com/in/jaepstein00002/] Rich Gatz, Head of Cyber Claims, Arch Insurance [https://www.linkedin.com/in/richardgatz/] Tristan Morris, CEO, SplitSecure [https://www.linkedin.com/in/tristanmorris/] Chapters 00:00 Introduction to Cyber Insurance and AI 02:57 Understanding Agentic AI and Its Implications 06:04 The Classification Problem in AI Risk 08:51 The Role of Controls in Cyber Insurance 12:02 AI Risk vs Cyber Risk: A New Perspective 14:59 Certification and Governance of AI Controls 17:48 The Future of AI in Cyber Insurance 19:55 The Human Element in AI Risk Management 22:03 Understanding Acceptable Risk in AI 24:03 The Evolving Threat Landscape of AI 27:19 Cyber Insurance and AI: A Complex Relationship 30:24 Defining AI Risk and Insurance Coverage 33:15 The Importance of Risk Assessment in AI 36:44 Navigating Regulatory Frameworks for AI 39:05 Industry Consensus on AI Risk Management

Cybersecurity Workforce Gap: Human Error, Ransomware & Shadow AI Risk

Human error drives most cyber breaches. But the deeper problem is a workforce gap that leaves organizations exposed before the first attack arrives. Yaniv Kapluto [⁠http⁠s://www.linkedin.com/in/capeluto/], Chief Revenue Officer at nuKudo [https://www.nukudo.com/⁠ ⁠], joins Cyber Insurance News Executive Editor Martin Hinton to discuss the human realities behind every breach, the true cost of stolen data, and what AI and quantum computing mean for the future of data security. Kapluto breaks down nuKudo's rigorous talent pipeline, why shadow AI is an immediate threat most organizations have not mapped, and what underwriters should be asking before they quote a risk. This episode covers: * Why people remain the most exploitable entry point in any organization. * How cybercrime operates as a structured, funded business. * The long-lasting value of stolen data and the ransomware cost curve. * What good cybersecurity culture looks like from the inside. * Shadow AI risk and the quantum computing threat to encryption. * What underwriters should look for when assessing cyber preparedness. Yaniv Kapluto is CRO at nuKudo, a global cybersecurity workforce company placing trained security professionals across government and private sector clients. Chapters   00:00 Introduction to Cybersecurity and Human Error. 01:14 nuKudo's Mission and Origin Story. 04:35 Assessing Cybersecurity Needs and Roles. 09:38 The Human Element in Cyber Breaches. 13:36 Understanding the Scale of Cyber Threats. 18:09 The Asymmetry of Cybersecurity Resources. 20:32 The Value and Monetization of Stolen Data. 23:34 Cyber Insurance and the Cost of Breaches. 28:19 The Future of Data Security and Quantum Computing. 33:09 Cybersecurity in Healthcare Environments. 35:01 Understanding Hospital Cybersecurity Risks. 38:44 Bridging the Gap: IT and Cybersecurity. 43:55 Indicators of Cybersecurity Preparedness. 50:25 Addressing the Talent Crisis in Cybersecurity.55:49 The Future of Cybersecurity: EmbracingChange

Minimum Viable Business Is The Real Cyber Insurance Question

Every business leader assumes a cyberattack is coming. Far fewer have asked the question that actually matters: how fast can we get back to trading? Lee Nolan, General Manager UK and Ireland for Hitachi Vantara, joins Martin Hinton to introduce one of the most practical frameworks in cyber risk planning, the minimum viable business. It is not a technical concept. It is a board-level decision about which systems, processes, and data your organization cannot survive without. In this episode, Lee explains why recovery costs run 20 to 24 times the ransom demand, why the average organization takes 21 to 24 days to restore basic operations, and why full recovery takes around seven months. He walks through the castle and moat model for protecting critical data, explains immutable backups and clean rooms in plain English, and describes what a credible incident response plan actually looks like. He also makes the case that cyber insurance is most valuable as a partnership not a policy you read after the breach. One question closes the episode. When did you last ask your CISO how long recovery takes? Cyber Insurance News Podcast is published by cyberinsurancenews.org and covers the global cyber insurance market for underwriters, brokers, CFOs, and General Counsel. Chapters 00:00 Introduction to Cyber Insurance and Data Management 04:42 Understanding Cyber Risk and Recovery 09:43 The Role of Cyber Insurance in Business Continuity 14:27 Communication and Transparency in Cyber Incidents 19:38 The Impact of Supply Chain Vulnerabilities 24:49 Data Management and Recovery Challenges 31:31 The Importance of Preparation in Cybersecurity 36:39 C-Suite Conversations: Engaging with the CISO 41:06 Cybersecurity as a Health and Safety Standard 44:42 Incident Response Planning: The Basics 50:46 Understanding Immutable Backups and Clean Rooms 57:20 Hitachi Vantara: A Global Technology Leader 01:00:07 Paying It Forward: The Importance of Mentorship Lee Nolan [http://linkedin.com/in/lee-nolan-45a01a5?originalSubdomain=uk] Hitachi VantaraOfficial Website [https://www.hitachivantara.com/] CyberResilience Act (UK) [https://www.gov.uk/government/collections/cyber-security-and-resilience-bill] Commvault DataProtection Solutions [https://www.commvault.com/]

Your Cyber Incident Response Plan Won't Save You - Practice Will

99% of organizations have a cyber incident response plan. 73% admit it wouldn't hold up under real pressure. So what's the gap, and how do you close it? Martin Hinton speaks with Matt Mosley, Incident Response Manager at Sygnia, about what actually happens when ransomware hits on a Friday night, why legal delays cost companies millions, and why AI in incident response needs a human hand on the wheel. For cyber insurers and underwriters, this episode is essential. A weak cyber incident response plan is not just an operational problem; it is a claims problem. Backup gaps, undefined decision authority, and untested IR playbooks all drive longer recovery timelines and higher loss ratios. Mosley identifies exactly what underwriters should ask at renewal and which answers should raise flags. RESOURCES Sygnia [https://www.sygnia.co/⁠] Find Matt on LinkedIn [https://www.linkedin.com/in/mattmosley1/⁠] Most CISOs Admit They Are Not Ready For The Next Big Cyberattack [https://cyberinsurancenews.org/ciso-incident-response-readiness-2026/⁠] State CISOs Sound The Alarm: What The 2026 NASCIO-Deloitte Study Means For Government Cyber Risk Insurance [https://cyberinsurancenews.org/government-cyber-risk-insurance-nascio-deloitte-2026/] Alibaba's AI Agent Mined Crypto Without Permission. Now What? (Forbes) [https://www.forbes.com/sites/boazsobrado/2026/03/11/alibabas-ai-agent-mined-crypto-without-permission-now-what/] There's a New Phishing Scam: Fake Invitations (New York Times) [https://www.nytimes.com/2026/04/23/style/invitation-phishing-scam.html] CHAPTERS 00:00 Understanding Incident Response Preparedness 02:53 The Role of Sygnia in Incident Response 04:13 The Dynamics of Incident Response 08:26 The Human Element in Incident Response 11:54 The Disconnect in Perceived Readiness 14:50 Practicing Incident Response Plans 16:58 Identifying Gaps in Incident Response 18:04 The Cost of Delayed Decision-Making 19:16 Dealing with Hubris in Leadership 21:24 The Complexity of Incident Response Plans 23:29 First Steps in Incident Response 25:24 Involving Key Stakeholders 28:00 Preparing for the Unimaginable 31:38 The Mainstreaming of Cybersecurity Awareness 34:46 The Evolving Landscape of Cyber Insurance 35:22 Visibility Gaps in Hybrid Environments 38:16 The Role of the CISO in Crisis Management 41:45 Communicating Cybersecurity Needs to the Board 45:28 The Impact of AI on Cybersecurity 52:34 Best Practices for Incident Response 56:38 Final Thoughts on Cybersecurity Preparedness ABOUT CYBER INSURANCE NEWS Cyber Insurance News and Information is the go-to source for underwriters, brokers, CISOs, and senior executives navigating the cyber insurance market. Published and hosted by Martin Hinton, a journalist with 30 years of experience covering just about everything. Website: https://cyberinsurancenews.org [https://cyberinsurancenews.org]

Cyber Insurance Blind Spots: Why 85% Of Attacks Never Go Public

Most companies think they understand their cyber risk. They filled out the questionnaire. They renewed the policy. They checked the box. According to cyber insurance experts Ralph Pasquariello and Craig Sekowski of CYBERRISKIQ, that confidence is one of the most dangerous blind spots in corporate America today. In this episode of the Cyber Insurance News and Information Podcast, Ralph and Craig return as guests to discuss the cyber insurance gaps that leave organizations exposed precisely when they think they are protected. WHAT WE COVER: - Why less than 15% of successful cyber attacks ever become public and what that means for how companies assess their own risk. - The 200-day average dwell time attackers spend inside corporate networks before detection. - How AI is being used on both sides of the cyber fight and why your current policy may not cover an AI-enabled attack. - Why renewing your cyber insurance policy annually without review is leaving companies dangerously exposed. - Third party damages, class action exposure, and why sublimits matter more than most CFOs realize. - CYBERRISKIQ's induction into the Society of Risk Management Consultants and what it signals about cyber's growing role in enterprise risk management. - Why the current flat pricing market is an ideal window to add coverage layers without doubling premiums. ABOUT THE GUESTS: Ralph Pasquariello and Craig Sekowski are the founders of CYBERRISKIQ, a cyber insurance and cybersecurity advisory firm. They work with corporations, brokers, and risk managers to identify coverage gaps, assess cyber posture, and align insurance limits with real world exposure. They are members of the Society of Risk Management Consultants. ABOUT THE HOST: Martin Hinton is the Executive Editor and Publisher of Cyber Insurance News. With over 30 years of journalism experience across six continents, he covers the cyber insurance market for underwriters, brokers, CISOs, and risk managers. READ THE FULL ARTICLE: cyberinsurancenews.org/cyber-insurance-blind-spots-cyber-risk-iq The Society of Risk Management Consultants (SRMC) [https://srmcsociety.org/] CYBERRISKIQ [https://www.linkedin.com/company/care-report/about/] Craig Sekowski [https://www.linkedin.com/in/craigsekowski/] Ralph Pasquariello, CLCS [https://www.linkedin.com/in/ralphpasquariello/] Chapters   00:00 Introduction to Cyber Insurance Awareness. 01:10 The Impact of AI on Cybersecurity. 02:44 The Growing Importance of Cyber Insurance. 06:13 Understanding the Hidden Cyber Threats. 07:56 The Role of Risk Management Consultants. 10:06 Bridging the Gap Between IT and Insurance. 11:58 The Importance of Reading Cyber Insurance Policies. 14:05 The Real Costs of Cyber Breaches. 18:12 The Long-Term Implications of Cyber Incidents. 20:49 Understanding Cyber Insurance and Its Importance. 21:55 The Value of Data in Cybersecurity. 23:24 Identifying Vulnerabilities in Data Management. 24:49 The Evolution of Data Breach Insurance. 27:38 The Reality of Cyber Attacks. 30:02 Raising Awareness in Cybersecurity. 31:55 Current Trends in Cyber Insurance Pricing. 35:06 Improving Insurability Through Cybersecurity Practices. 38:32 The Human Element in Cybersecurity Challenges SUBSCRIBE for weekly coverage of the cyber insurance market from the source professionals trust.