About the Course
The NAIC Insurance Data Security Model Law seeks to establish data security standards for regulators and insurers in order to mitigate the potential damage of a data breach.
The law applies to insurers, insurance agents and other entities licensed by any state department of insurance.
This on-line CPE training event covers how to approach compliance with the insurance industry regulations concerning information security programs. It also covers the various standard components of an effective cybersecurity program in the insurance industry.
New cybersecurity risk management regulations for insurance companies are here.
The National Association of Insurance Commissioners (NAIC) approved Insurance Data Security Model Law and the State of New York in March 2017 placed into effect Section 500 of Title 23 of the Official Compilation of Codes.
"Computers, software, programming and algorithms are all parts of a cybersecurity risk program, but it is the interaction with the 'humans' that makes all the difference in world."
NAIC's model law requires insurance organizations to have everything from information security program policies to incident response plans to specific breach notification procedures. Insurance organizations will also have to certify compliance to state insurance commissioners annually. Now that NAIC's model law is heading for adoption, it is important to learn how it might apply to your organization and what you can do now to start preparing for compliance.
This event focuses on describing the effective components of a modern cybersecurity risk management program. The attendees will be prepared to start the evaluation of an existing program. They will then be able to discuss with senior management, the audit committee, and the board of directors how to proceed in improving cybersecurity risk management. We consider five main components of an effective risk management program: data, control implementation, verification, breach preparedness and risk management.
This comprehensive training course is for anyone who wants to have a strong base of knowledge and understanding of the essentials of cybersecurity risk management program.
This timely CPE virtual training is designed for the project director, project leader and individuals who have to create effective cybersecurity program and the related documents for an insurance organization. Each attendee will go home with a set of 35 documents that were used to create the academy.
Each attendee will receive 12 CPE Hours (YB). A certificate of completion will be provided.