The global gap in cyber risk protection is $0.9 trillion, with insured losses covering only 1% of economic losses from cyber incidents. This is stated in the report “Strengthening Cybersecurity: Key Indicators for Policymakers” prepared by the Zurich Insurance Group together with the Cyber Threat Alliance and the CyberGree Institute and published on the Zurich website.
It calls for the introduction of standardized national cybersecurity indicators.
As noted, the report relies on reliable quantitative data to improve standards and best practices. Although organizations such as ENISA and CISA set frameworks at the corporate level, national indicators for policy-making are virtually non-existent.
Zurich’s new report presents six key indicators and an institutional framework for governments to help clarify national cyber risks, strengthen resilience, and ensure informed policy decisions. Specifically, the creation of National Cyber Statistics Offices—specialized agencies to collect these metrics—will ensure consistent incident reporting, threat and resilience tracking, publication of key analyses, and assessment of security regulation effectiveness. These offices could also support a supranational body for aggregating results, enabling deeper global comparison and understanding of evolving threats.