2025 Membership (PDF)

2026 Charges

1. The Cybersecurity (H) Working Group will:

Cybersecurity Charges

1. Monitor cybersecurity trends, such as vulnerabilities, risk management, governance practices, and breaches, that have the potential to affect the insurance industry.
2. Facilitate communication across state insurance departments regarding cybersecurity risks and events.
3. Develop and maintain regulatory cybersecurity response guidance to assist state insurance regulators in the investigation of national insurance cyber events.
4. Monitor federal and international activities on cybersecurity, engaging in efforts to manage and evaluate cybersecurity risk.
5. Coordinate NAIC committee cybersecurity work, including cybersecurity guidance developed by the Market Conduct Examination Guidelines (D) Working Group and the Information Technology (IT) Examination (E) Working Group.
6. Work with the Center for Insurance Policy and Research (CIPR) to receive updates on cybersecurity research efforts, by the CIPR and others, and to analyze publicly available cybersecurity-related information.
7. Support the states with implementation efforts related to the adoption of Model #668, including supporting the research into and, if approved, the implementation of a cybersecurity event notification portal.
8. Coordinate with committee support to support cybersecurity preparedness for state insurance regulators, including advising on training development and facilitating tabletop exercises.  

Cybersecurity Insurance Charges

1. Monitor industry trends pertaining to cyber insurance, including meeting with subject matter experts (SMEs) and evaluating data needs of state insurance regulators. Considerations should include the availability and affordability/pricing of cyber insurance, disclosures, limits and sublimits, as well asd sublimits in policies, policy language and trends in requirements, underwriting practices, and the role of reinsurance in the cyber insurance market.
2. Coordinate with NAIC work groups addressing cyber insurance related issues, such as the Casualty Actuarial and Statistical (C) Task Force.
3. Monitor federal and international activities related to cyber insurance and financing mechanisms for cyber risk.
4. Coordinate with committee support to conduct analysis pursuant to the NAIC’s Cyber Insurance Report.
5. Review the NAIC’s Property & Casualty Annual Statement Cybersecurity Insurance Coverage Supplement recommending changes and/or developing reports to supplement data development as necessary.  
6. Consider and develop a guide for states on cyber insurance data analysis best practices.