Institut für Health Care & Public Management
Permanent URI for this collection
Browse
Browsing Institut für Health Care & Public Management by Person "Haas, Andreas"
Now showing 1 - 2 of 2
Results Per Page
Sort Options
Publication Management von Cyber-Risiken und Möglichkeiten des Risikotransfers : eine ökonomische und versicherungstechnische Analyse(2016) Haas, Andreas; Schiller, JörgIn a data-based economy cyber-risks are an emerging operational risk. Data breaches, data destruction or business interruption resulting from a cyber attack, can lead to unexpectedly high costs. The increasing exposure of companies to cyber risks is the consequence of a lasting change in the digital economy. At the same time, continuous investments in technological prevention measures to reduce the cyber-damage risk may come to an economic limitation. With the growing use of cloud services in businesses, the cyber-risk exposure increases, especially when sensitive digital information is processed. The problem with cyber-risks regarding cloud services is that the possibilities of technological IT risk management are limited. Moreover, the financial consequences of a cyber attack may exceed the risk-bearing capacity of the affected company. Therefore, risk transfer instruments such as cyber-insurance can reduce the financial risk of cyber attacks. But despite an increased use of cloud services and a significantly rising number of cyber attacks, the cyber insurance market in Germany remains at a very low level. The aim of this work is the economic analysis of the management of cyber risks. For this purpose, cyber risks are explained in detail, and a market analysis of existing cyber insurance concepts in Germany is conducted. We find explanations for the low demand for cyber insurance products in Germany: Especially existing gaps in current coverage are identified as a market barrier. To improve cyber insurance coverage, technological development, and changes should be anticipated and implemented faster into the coverage of cyber insurance products. We developed new approaches to identify and analyze new technological risks in the context of emerging technologies like Cloud-Computing and the Internet of Things. Based on that analysis we highlight the importance of an insurance-based risk transfer. As we identify incentives for companies to externalize the costs of cyber attacks, we discuss regulatory measures to increase the general risk perception in the market to avoid such behavior. With the internalization of the financial consequences of cyber-attacks, the relevance of cyber-insurance as a complementary element in risk management increases.Publication Risiken aus Cloud-Computing-Services : Fragen des Risikomanagements und Aspekte der Versicherbarkeit(2013) Haas, Andreas; Hofmann, AnnetteCloud-Computing services are changing the risk situation of IT-outsourcing and represent a challenge for the insurance industry. The most important problem to guarantee insurability of these emerging risks is that they are not stochastically independent. On the one hand, the interdependent network structure of these risks implies a significant contagion risk; on the other hand, new risks emerge that have not been addressed by existing (cyber risk) policies so far. Insurance concepts should be supported by innovative risk diversification concepts for cloud computing service. Addressing and classifying the new risks resulting from Cloud-Computing services, this article discusses insurability issues and risk management solutions.