CYBER INSURANCE ASSESSMENT READINESS CHECKLIST

Written By Kevin McKernan

Insurers may ask…

Identifying your risk:

  • How do you identify threats, vulnerabilities, and risks? 

  • How do you educate employees and vendors about cybersecurity? 

  • Do you maintain inventories of hardware, software, and privileged accounts? 

  • Do you use Multi-Factor Authentication to validate who is accessing your systems? 

Protecting your assets

  • Do you automate password management? 

  • Have you implemented Privileged Access Management (PAM)? 

  • What kind of malware defense have you deployed? 

  • If an attack renders your privileged accounts and passwords inaccessible, do you have a backup plan? 


Detecting risk and breaches

  • Do you have endpoint security in place? 

  • What type of credential monitoring have you implemented to track privileged account usage? 


Responding to cyber attacks:

  • Do you have incident response plans, and how often are they tested and updated? 

  • What type of incident response tools do you have in place to detect privileged account attacks? 


Recovery after an attack:

  • If a cyber incident occurs, how would you fix the security gaps that made your organization vulnerable?

This document is designed for general information only. The information presented in this document should not be construed to be formal legal or tax advice nor the formation of a lawyer/client relationship. 

For more information on this and other topics, please contact Kevin via any of the channels listed below:

📧 kevin@kmckernan.com  | 📞 718-317-5007

Kevin McKernan
Previous

THE IMPORTANCE OF MEETING MINUTES
Next

CLIENT ESTATE PLAN REVIEW CHECKLIST