Exploring Complex IT Services Risks for Agents and Brokers

Valynda Murphy
Insurance Experts' Forum, November 1, 2013

Tools that connect businesses to their customers and suppliers are making us more efficient, more responsive and changing the way business gets done. But these tools also are creating exposures to complex risks that didn’t exist a few years ago.

Cloud computing is just one part of the consumerization of information technology. Social, mobile, analytics and cloud (SMAC) technologies also are changing enterprise IT radically.

Understanding this complexity and managing the inherent risks faced by businesses that are heavily dependent on IT infrastructure and critical information exchange, such as financial institutions and health care is critical.

That’s why in March of 2013, CNA brought together professionals from CNA information technology (IT), underwriting, claim and risk control to facilitate our first-ever “cloud school.” More than 40 agents, brokers and insureds attended. 

The agenda included examining trends in the enterprise software environment, discussing increased risks related to security, privacy and interruption of IT services and exploring best practices for assessing and managing these risks in enterprise software vendor relationships.

We knew people would be reluctant to share personal experiences, so we used ourselves as an example.

CNA had moved to a managed services model several years ago, which means our IT staff now works side-by-side with our technology vendors, who are exactly like the technology clients many of our agents and brokers serve.

As a result, our IT staff was able to offer real world insights into best practices in evaluating vendors and managing the risks these increasingly complex relationships present.

Some examples included:

  • Making sure the scope of work is well defined and understood by all parties.
  • Engaging legal counsel with expertise to negotiate terms, conditions and service level agreements (SLAs).
  • Aligning SLAs with third party providers with customer requirements.
  • Including formal change control processes.
  • Including recovery time objectives (RTO) and recovery point objectives (RPO) in SLAs.
  • Defining the support coverage available during outages.
  • Ensuring customer / user responsibilities are clear.
  • Establishing formal business continuity plans, with clear roles, responsibilities and communications.
  • Reviewing SLAs periodically to ensure business needs are met.

With technology evolving every day, we learn something new at each and every cloud school. But one thing remains consistent, the cross pollination of ideas between IT vendor management, underwriting, claim and risk control produces valuable new insight each time we conduct this session.

Cloud school is open to agents and brokers who want to learn more about emerging technology risks that their clients face. It is a free session, and agents are encouraged to bring their clients to take part in this educational opportunity.

The next Cloud School is scheduled to take place in New York on November 13th, 2013. 

This blog has been published with permission from CNA Insurance.

Readers are encouraged to respond to Valynda Murphy directly at, or using the “Add Your Comments” box below.

The opinions of bloggers on do not necessarily reflect those of Insurance Networking News.

Comments (0)

Be the first to comment on this post using the section below.

Add Your Comments...

Already Registered?

If you have already registered to Insurance Networking News, please use the form below to login. When completed you will immeditely be directed to post a comment.

Forgot your password?

Not Registered?

You must be registered to post a comment. Click here to register.

Blog Archive

Putting Your Investments Where Your Transformation Is: Part 2: Optimizing Your IT Investments Portfolio

Sam Medina continues a 3-part series on Transforming the IT Investment Budget in order to fund new programs and initiatives without the necessity of additional capital expense.

Boosting Performance with Integrated Underwriting Tools

A unified, comprehensive platform can help underwriters perform their jobs more efficiently — and profitably.

Opinion: Halbig Decision Creates New Level of Uncertainty for Obamacare

Time will tell if the Halbig decision remains viable. But in the meantime, a new level of uncertainty has been injected into the process.

Apply Mindfulness to Leadership

Managers can benefit from applying this theory both to their career aspirations as well as to interactions and expectations of staff.

Apple's Way: Succeeding in the Enterprise Without Even Trying - Part 3

Today's data centers are doing far more with much smaller footprints.

CIOs: "We Don't Have Enough People to Run Our Mainframes"

Insurers will be competing with other industries for both legacy and “new IT" talent.