The article linked below provides an interesting summary of the latest Hiscox Cyber Readiness Report. 

On the one hand, it is rather alarming that 45 per cent of the companies report that they have not improved their IT security after a cyber incident. On the other hand, it is good to see that data protection management and respective compliance procedures are at the top of the agenda. This is important as, under D&O policies, I expect that data compliance breaches will become a more frequent and severe topic. 

What I find encouraging from an insurer's perspective is that 25 per cent of the companies intend to buy cyber insurance in the next 12 months and that they especially look for insurers' expertise and assistance in this field. 

Particularly as the future role of insurers is much discussed in view of insurtechs and a changing industry, this shows that a sincere risk dialogue as part of an intensive underwriting process does not necessarily need to be burdensome but can create true added value for insurers in their role as key risk management partners and their insured alike.