17 November 2020
Pension schemes are vulnerable to a variety of Cyber Risks including ransomware attacks; data breaches; theft of assets and disruption to service. This paper describes these risks in detail including the types of loss schemes that their sponsors may be exposed to. It outlines who is responsible for managing Cyber Risk. Finally, it sets out how Trustees and schemes can manage their risk including cyber hygiene, third party assessment, cyber insurance and incident management.
Further details on the Cyber Risk Investigation working party