Protecting Your Credit Union



Similar documents
Protecting Your Credit Union

Cyber Risks Connect With Directors and Officers

Managing Cyber Security as a Business Risk: Cyber Insurance in the Digital Age

Here s the scene: You are a newly seated trustee. Insurance Protect Ion for ERISA Funds: What New (and Even Veteran) Trustees Need to Know.

Network Security and Data Privacy Insurance for Physician Groups

Distributor Liability Contract Risk Management THOMAS DOUGLASS APRIL 15, 2015

CYBER & PRIVACY LIABILITY INSURANCE GUIDE

Care Providers Protecting your organisation, supporting its success. Risk Management Insurance Employee Benefits Investment Management

RETIREMENT PLAN FIDUCIARY GUIDE

NCUA LETTER TO CREDIT UNIONS

FINANCIAL LINES ACE ELITE PLUS MANAGEMENT LIABILITY INSURANCE

Be Afraid, Be Very Afraid!!! Hacking Out the Pros and Cons of Captive Cyber Liability Insurance

You invest in your executives. Protect that investment

Third Party Relationships

Management liability - Employment practices liability Policy wording

Don t Wait Until It s Too Late: Top 10 Recommendations for Negotiating Your Cyber Insurance Policy

Mitigating and managing cyber risk: ten issues to consider

Cyber Exposure for Credit Unions

Directors and Officers Liability Insurance Guidance and Advice for Risk Managers

Credit Union Liability with Third-Party Processors

Guidelines for Financial Institutions Outsourcing of Business Activities, Functions, and Processes Date: July 2004

How To Insure An Investment Advisor

The HIPAA Omnibus Final Rule

Operational Risk Management- More than an insurance policy

THE DIGITAL AGE THE DEFINITIVE CYBERSECURITY GUIDE FOR DIRECTORS AND OFFICERS

THE NEW REALITY OF RISK CYBER RISK: TRENDS AND SOLUTIONS

GALLAGHER CYBER LIABILITY PRACTICE. Tailored Solutions for Cyber Liability and Professional Liability

An Executive Overview of GAPP. Generally Accepted Privacy Principles

REQUEST FOR PROPOSALS

What is Cyber Liability

Fiduciary Insurance Understanding Your Exposure. All programs Administered by Lockton Affinity, LLC

Fiduciary Liability. Presented by. The McLaughlin Company

Data Breach and Cybersecurity: What Happens If You or Your Vendor Is Hacked

Guide to Professional Liability Insurance HRPA OFFICE OF THE REGISTRAR

Mesirow Financial. Fiduciary Partnership FAQ for Advisors

T R U S T E E S L I A B I L I T Y

Solutions for Your Unique Healthcare Risk Management Challenges

MANAGING Cybersecurity Risk AND DISCLOSURE OBLIGATIONS

Revenue Ruling states that a Captive that receives 50% of its premiums from unrelated entities will achieve adequate risk distribution.

GUIDE TO PROFESSIONAL LIABILITY INSURANCE HRPA OFFICE OF THE REGISTRAR

FINANCIAL LINES & VENTURE CAPITAL INSURANCE FAQS

MANAGEMENT PROTECTION- E-TRADED

Mesirow Financial. Fiduciary Partnership FAQ for Advisors

Willis Healthcare Practice 11 th Annual Forum July 10,2007. Managing and Insuring Risks in Network Privacy/Cyber Risk

Understanding the Cyber Risk Insurance and Remediation Services Marketplace:

Risk Management Programme Guidelines

BEAZLEY ARMOUR SIDE A DIRECTORS AND OFFICERS LIABILITY INSURANCE POLICY

Need for Cyberliability Insurance Continues to Grow

Beazley presentation master

The ASI Risk Management Program

Cyber Risk: Global Warning? by Cinzia Altomare, Gen Re

Health Care Practice. An Integrated Approach to Meet the Financial and Risk-Related Needs of Health Care Organizations. Aon Risk Solutions

Cyber-insurance: Understanding Your Risks

Managing General Agents (MGAs) Guideline

Michael Gaudet 2015 PHC 7/23/2015. Key Broker Challenges

The Financial Insurance Guide for Investment Advisors

June 10, Legislative Amendments to the Indiana Code Relating to First Lien Mortgage Act (the Act )

CYBER RISK SECURITY, NETWORK & PRIVACY

Protecting Your Assets: How To Safeguard Your Fund Against Cyber Security Attacks

Aon Risk Solutions. Life Sciences Practice. Providing End-to-End Solutions for Life Sciences Companies. Risk. Reinsurance. Human Resources.

An Overview of Professional Directors and Officers Liability in Disaster Preparedness and Recovery Planning

SPECIMEN. (1) advising, counseling or giving notice to employees, participants or beneficiaries with respect to any Plan;

About DeWitt Stern. Insurance and Risk Management Services for Law Firms

Insurance Coverage During the Economic Crisis. by Bianca R. Chapman and Marc Rosenthal

Cyber Liability Insurance

Fiduciary Insurance and the Board of Retirement in New York State

CYBER LIABILITY INSURANCE MARKET TRENDS: SURVEY. October Sponsored by:

Professional Indemnity Insurance Glossary of Terms

Cyber and Privacy Risk What Are the Trends? Is Insurance the Answer?

8. Do you need a hardcopy Job Cost Report? Many companies like to track labor costs by the job.

Maryland Health Insurance Plan

Specialty Risk Protector

Executive Liability Insurance

THE LATEST TECHNOLOGY AN EMERGING RISK PROFILE THE WILLIS RENEWABLE ENERGY AND SOLAR CONSTRUCTION TEAMS

Zip It! Feds, State Strengthen Privacy Protection. Practice Management Feature July Tex Med. 2012;108(7):33-37.

Best Practices in ICS Security for System Operators. A Wurldtech White Paper

Sedgwick Risk Management Solutions

Cyber Liability. AlaHA Annual Meeting 2013

RISK MANAGEMENT AND COMPLIANCE

White Paper on Financial Institution Vendor Management

PrivateEdge Plus: Market-leading management and professional liability coverage package for private companies.

BARRY F. LORENZETTI MISSION STATEMENT A MESSAGE FROM THE PRESIDENT

State of the Cyber Insurance Market

GUIDANCE FOR MANAGING THIRD-PARTY RISK

In an ever changing business and social environment it has become increasingly

Assessing and purchasing the appropriate level of cover: a guide to top-up or excess layer insurance:

Product List Bermuda Casualty, Financial Lines, and Global Risk Solutions

LIQUIDITY RISK MANAGEMENT GUIDELINE

How To Insure A Project In The Uk

REINSURANCE RISK MANAGEMENT GUIDELINE

Legislative Proposals for the Maryland Commission on Cyber Security Innovation and Excellence

Managing Cyber Risk through Insurance

CITY OF MONTEREY RISK MANAGEMENT POLICY STATEMENT

What would you do if your agency had a data breach?

Promotional Risk Management. Gaming, Entertainment & Sports Practice

Privacy Legislation and Industry Security Standards

SOCIAL MEDIA MOBILE DEVICES CLOUD SERVICES INTERNET OF THINGS (IOT)

Airmic review of the supply chain insurance market Review of recent developments in the supply chain insurance market

UK Healthcare Team RISK AND INSURANCE SOLUTIONS FOR THE HEALTHCARE INDUSTRY

A case for bundled claim management

Transcription:

Protecting Your Credit Union A More Strategic Approach 2013 As a credit union, you are strategic in everything you do. Shouldn t your approach to risk/insurance be the same? Why do you buy directors and officers insurance? Or for that matter, any insurance? While it seems like a simple question, it is one that is often overlooked in the insurance risk management process. Understanding the answers can help shed light on management s perceived risk and concerns, as well as its preferences and tolerances. It also can radically change how credit unions look at their insurance programs, what they buy, and how it is managed. Matt Sweeney, MBA, AAI Credit Union Practice Leader 816.960.9181 msweeney@lockton.com Nate Shada, CPA Producer 816.960.9361 nshada@lockton.com Applying a strategic decision-making process to risk is becoming more important with heightened exposures and increased regulatory scrutiny. We see more sophisticated credit unions transition from a procurement mentality to one of strategic planning. This can help control insurance costs, and ensures that the credit union has consciously structured its programs to manage its risk exposure in a manner that is consistent with its business strategy and risk tolerances. Conducting a strategic insurance planning process should be applied to most forms of insurance (for example, directors and officers, bond, property and casualty, identity theft). We L O C K T O N C O M P A N I E S

even recommend this strategic process for your suite of employee benefits insurance programs (such as, health insurance, life insurance, accidental death and dismemberment) and even retirement plans. The basic approach is the same: What are your concerns? What are you trying to do? Why? To what level? To help our clients answer these questions, we developed a three-step risk planning methodology: 1. Identification of risk exposure. The first step is helping credit unions think through all the areas that could expose them to risk and what this exposure could mean to their operations, reputation and financial health. This can often be an eye-opening process and can bring insurance to life by helping management and board members see more clearly all the things that insurance could possibly apply to. Fully understanding your credit union s areas of risk takes you to the assessment and planning step of the process. Risk Planning Methodology 2. Assessment of the risk and action-planning each item. 3. Custom-designed risk solutions, including insurance programs, to meet your specific exposures and preferences. 2. Assessment of the risk and action-planning each item: Estimate the impact and likelihood of the risk. Determine management risk tolerance and preferences: risk adverse, comfortable with known risk, frequency versus severity, etc. 1. Identification of risk exposure: Operational business interruption, protection and retention of key assets and people. Reputational brand impact and member perception and satisfaction. Financial loss of income, demands for damages, data breach notification costs. Develop plan for each risk: retain or transfer, insure and to what level. Insurance is not always the answer. Only with a comprehensive understanding of your risk exposure and the potential impact to your credit union can you then strategically outline the most appropriate method to protect your credit union. Typically, risks fall into one of several buckets: Each credit union has a unique risk footprint. This can be influenced by several factors such as: loans and services offered (online banking, trust services), ownership in a CUSO, membership base, number of branches and its location, board members and employee demographics. Not appropriate for insurance i.e., business risk items. Contractually transfer the risk through alternative vehicles (contracts, outsource). Retain all or a portion of the risk. Transfer the risk through insurance. 2

2013 Lockton Companies Each credit union has a unique risk footprint that we help it understand. Determining where your specific exposures fall will provide the raw input for what your insurance programs should ultimately look like and be tailored around. Developing a plan leads to the design phase of the process. 3. Custom-designed risk solutions, including insurance programs, to meet your specific exposures and preferences: Examine existing programs to evaluate how effectively they serve their purpose. Benchmark versus other credit unions or financial institutions and what is currently available in the marketplace. Negotiate specific policy language, terms, conditions and retentions, not just limits and premiums. Conducting a thorough strategic insurance planning process with an independent expert to help you custom tailor your insurance program will position your credit union to be more confident that it has insured the risks it is most concerned about; at appropriate levels; and has applied its premium spend more effectively to achieve its strategic goals. 3

The following three case studies highlight how this strategic planning process aided other credit unions in creating tailored solutions for specific needs. CASE STUDY #1: DOES MY DIRECTORS AND OFFICERS COVERAGE PROTECT MY BOARD/ MANAGEMENT/CREDIT UNION SUFFICIENTLY? 1. Identification of risk exposure: Responding to questions and concerns from the Board, the credit union engaged Lockton to assess the quality of its current program and appropriateness. 2. Assessment of risk exposure: The credit union used the industry standard policy form, but had never had an insurance expert help it fully examine the specific terms and coverages negotiated. The result was the policy had several restrictions and coverage exclusions that were problematic: A. Claims against the credit union (entity) were not covered. B. Regulatory actions were not covered. C. No coverage for defense costs for certain conduct allegations (dishonest acts, improper gains). D. No ability for the credit union to choose its own defense counsel. E. No coverage or defense would remain for the innocent parties due to the actions of the guilty party. F. Definition of a claim would not include criminal actions or civil money penalties. G. Insurance company was allowed to cancel coverage during the policy term for any reason. The policy had reasonable limits and premiums as compared to their peers. However, because of these restrictions, the credit union deemed the coverage was inadequate and poor value for the premium. 3. Custom-designed risk solutions: Lockton worked with the credit union to develop new coverage that provided insurance for each of the deficient areas. Also, Lockton redesigned the policy limits to structure an appropriate amount of coverage for each of its three constituencies (directors, officers, and the entity), based upon its needs and preferences. It resulted in a program that provided more robust coverage. Never had an insurance expert help it fully examine the specific terms and coverages negotiated. The result was the policy had several restrictions and coverage exclusions that were problematic. 4

2013 Lockton Companies CASE STUDY #2: MANAGING EMPLOYEE BENEFITS AND RETIREMENT PROGRAMS TO RESPOND TO GROWING COMPLIANCE CONCERNS 1. Identification of risk exposure: A. Healthcare legislation created compliance concerns and challenges. The credit union client had limited internal bandwidth to stay on top of evolving regulations and provided a strategic plan to address these needs. B. Retirement programs required independent analysis of fund performance and fee reasonableness. The credit union received this review from the vendor, which the Department of Labor guidelines stipulate is not considered independent. 2. Assessment of risk exposure: A. Healthcare: New regulations imposing changes in 2011, 2012, 2013, 2014 and 2018. How do the employee benefit programs need to be amended to respond to these regulations? What is the cost impact and how does the credit union provide long-term budget analyses around these changes? B. Retirement: The credit union lacks internal bandwidth and expertise to conduct sophisticated fund performance and fee reasonableness reviews, so it needed an independent source. 3. Custom-designed risk solutions: A. Healthcare: Lockton worked with the client to produce a detailed review of how healthcare legislation will impact the client. We then developed a three-year action plan to respond to the specific components and regulations so the credit union would be compliant. B. Retirement: Lockton worked with the credit union client as an independent consultant on all retirement plans 401(k), pension, and the 457(b) nonqualified plan to comply with Department of Labor guidelines. 5

CASE STUDY #3: PRIVACY THEFT RISK 1. Identification of risk exposure: A credit union, with more than 46,000 members, stores personal identifiable information, including salaries, Social Security numbers, address and work history. Exposure to the loss or compromise of this data exists whether the credit union stores the data or uses a third party. 2. Assessment of risk exposure: A breach of credit union information results in notification costs to affected members approximately $200 per member. No insurance and/or contractual transfer mechanism is in place, leaving the credit union with an unfunded and uninsured potential liability of $9.2 million. Traditional liability and bond insurance would not cover this type of loss, and even some cyber policies restrict coverage to only $250,000 for notification costs. 3. Custom-designed risk solutions: Lockton worked with the credit union and technology vendors to modify contracts to provide some contractual risk transfer mechanism. Then, Lockton evaluated the full exposure to risk for insurance purposes, and designed a tailored insurance product to respond to the remaining notification cost liability and the vicarious liability from outsourcing. Traditional liability and bond insurance would not cover this loss. 6

2013 Lockton Companies Develop the program that is right for you, rather than settling for the generic off-the shelf offering. Takeaways To conclude, moving to a strategic planning process will help credit unions identify and quantify their own risk footprint and have a better discussion on how to manage this risk. This will allow you to develop the program that is right for you, rather than settling for the generic off-the-shelf offering; thus, tailoring your premium spend more effectively and in a way most appropriate for your credit union. It is important to know that you have choices, and you are not alone. By partnering with an independent broker with a dedicated and proven credit union practice, you gain a better understanding of your specific risks and how to best manage them. You also gain access to an invaluable guide to help obtain and compare options from the entire insurance market, resulting in greater assurance that you have a superior product, tailored to fit your risk profile and preferences. 7

Our Mission To be the worldwide value and service leader in insurance brokerage, employee benefits, and risk management Our Goal To be the best place to do business and to work www.locktoncreditunions.com 2013 Lockton, Inc. All rights reserved. Images 2013 Thinkstock. All rights reserved. g\white paper\sweeney\2013\protecting your credit union-2013 update.indd\jkc

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information