« Non-proprietary Systems: What a Concept! | Main | Is SOA a Ripoff? »

Security: Do Insurers Have Their Heads in the Sand?

HeadInSand.jpg
A recent survey of P&C insurers by Fiserv indicates that when it comes to technology, carriers are most concerned about things like core systems, agency interface, billing and claims, and business process management. That's all well and good, but what I find shocking is that "data security" is missing from the list.

Certainly, it is clear that business processes and customer- and agency-facing technology are keys to doing business better, but data security may be the key to continuing to do business at all.

Of course, I didn't see the survey questions themselves, and it may be that respondents had pre-specified choices that did not include security technology projects. If that is so, then Fiserv needs to re-think this survey. If, on the other hand, the questions were open-ended, then shame on the insurers for burying their heads in the sand on this most critical issue.

Surveys aside, it seems to me that this industry continues to be rather sleepy-eyed on the subject of security--despite the increasing number of high proifle data breaches that affect literally millions of customers. What customer service initiative is more important than keeping the customer's personal and sensitive data secure and private?

To me it seems that the insurance industry is going blithely along its way, paying some attention to obvious issues, but avoiding the threats that could literally bring companies to their knees.

"Sure," carriers think, "there could be a breach, but that won't happen to me. It happens to those other guys."

What is truly frightening is that such childish thinking seems to permeate our industry. Didn't we learn anything from the ChoicePoint fiasco?

So what do you think. Are insurers opting for the subterranean sand shampoo, or is anyone truly paying attention out there?

Posted by Ara Trembly on July 2, 2007 11:47 AM |

TrackBack

TrackBack URL for this entry:
http://www.insurancetechguru.com/cgi-bin/mt/mt-tb.cgi/36

Comments (2)

Anon:

Just a guess, but here's my 2 cents' worth:
All the carriers/vendors I've worked with on PAS systems are acutely aware of these issues and have built requirements to protect that information. It may be that they tend to refer to this as "Privacy" as opposed to "Security," to distinguish from what has been traditionally thought of as User IDs, System Access/Permissions, etc.

Posted by Anon | July 11, 2007 3:44 PM

Posted on July 11, 2007 15:44

Ara Trembly:

Hmmm... Does this really all come down to semantics? Somehow I see the silence on this topic as too deafening to attribute it to simple miscommunication.

Posted by Ara Trembly | July 12, 2007 9:28 AM

Posted on July 12, 2007 09:28

Post a comment

(If you haven't left a comment here before, you may need to be approved by the site owner before your comment will appear. Until then, it won't appear on the entry. Thanks for waiting.)

Search


About

This page contains a single entry from the blog posted on July 2, 2007 11:47 AM.

The previous post in this blog was Non-proprietary Systems: What a Concept!.

The next post in this blog is Is SOA a Ripoff?.

Many more can be found on the main index page or by looking through the archives.

Subscribe to this blog's feed
[What is this?]
Powered by
Movable Type 3.34