For natural catastrophe risk, individual policy exposures can be aggregated within geographic zones. Similarly, cyber exposures can be aggregated using CRA-Zones.™ Cyber Risk Accumulation Zones (CRA-Zones™) were established to provide an easy to use open framework to measure and understand catastrophic cyber risk exposure. The CRA-Zones™ framework defines the minimal elements needed to provide a view of aggregated cyber exposure. CRA-Zones™ allow for analysis across multiple portfolios of risks and monitoring of exposure trends. The framework also supports regulatory efforts for setting a standard for data collection for cyber exposure management.
Geographic location is still important when assessing cyber catastrophe risk, however, two…