I'm a DevSecOps Engineer by profession and have been vacillating between transitioning to cybersecurity or starting my own consulting business over the next few years. I've identified "companies needing cyber insurance" as a demographic that has problems I can solve (cybersecurity monitoring and remediations).
As I understand it (which is admittedly not much), cyber insurance was issued by various companies years ago as a no-brainer to increase their revenue. As investors and boards of directors took notice, it's become an increasingly-common requirement for certain companies. Simultaneously, after paying out ransomware claim after data breach claim, the insurance companies have doubled the premiums over the past 12-24 months and the timeline to get a policy is now measured in months as the tech infrastructure of each potential insured is carefully audited and scrutinized. I envision a monthly/annual contract that would bring their infrastructure and operations up to snuff and minimize their hassle in satisfying their investors'/BoD's insurance requirement, as well as being part of any eventual incident response.
To understand the problem better, I thought I might take an online insurance class and get licensed as an agent or consultant, if only to not sound like an *** in meetings or get in trouble for saying "insurance" without a license. I don't think I want to sell insurance full-time, and it's probably easiest to just get a cybersec job, but I feel like understanding "both sides" of this area could be beneficial and a decent niche. I understand cyber insurance is typically an add-on to a P&C policy, so I've purchased the P&C course for now.
My main question is "what do experienced agents think upon first reading this?", and if it's something other than "You're a brilliant genius and the first person to ever consider doing something like this", any advice on alternate angles to look at or other places I might add value or seek contracting/consulting arrangements.
Finally, I have not identified anything obviously illegal or inherently unethical, but I also don't want to set any precedents, and again am kind of looking for a gut check/point in the right direction as I continue learning about all of this stuff.
Thanks!
As I understand it (which is admittedly not much), cyber insurance was issued by various companies years ago as a no-brainer to increase their revenue. As investors and boards of directors took notice, it's become an increasingly-common requirement for certain companies. Simultaneously, after paying out ransomware claim after data breach claim, the insurance companies have doubled the premiums over the past 12-24 months and the timeline to get a policy is now measured in months as the tech infrastructure of each potential insured is carefully audited and scrutinized. I envision a monthly/annual contract that would bring their infrastructure and operations up to snuff and minimize their hassle in satisfying their investors'/BoD's insurance requirement, as well as being part of any eventual incident response.
To understand the problem better, I thought I might take an online insurance class and get licensed as an agent or consultant, if only to not sound like an *** in meetings or get in trouble for saying "insurance" without a license. I don't think I want to sell insurance full-time, and it's probably easiest to just get a cybersec job, but I feel like understanding "both sides" of this area could be beneficial and a decent niche. I understand cyber insurance is typically an add-on to a P&C policy, so I've purchased the P&C course for now.
My main question is "what do experienced agents think upon first reading this?", and if it's something other than "You're a brilliant genius and the first person to ever consider doing something like this", any advice on alternate angles to look at or other places I might add value or seek contracting/consulting arrangements.
Finally, I have not identified anything obviously illegal or inherently unethical, but I also don't want to set any precedents, and again am kind of looking for a gut check/point in the right direction as I continue learning about all of this stuff.
Thanks!