Summary
This document is a guide detailing Verisk's comprehensive approach to cybersecurity. It outlines the company's commitment to safeguarding data integrity and confidentiality as it expands its market presence. The guide emphasizes the importance of a strong culture of awareness among employees and the establishment of robust internal governance processes. It describes the roles of the Board of Directors and the Executive Risk Management Committee in overseeing cybersecurity management and risk mitigation strategies. The document also highlights the accountability of Verisk businesses in complying with various legal and regulatory requirements, such as GDPR and HIPAA. Furthermore, it discusses the implementation of policies and procedures designed to protect data, including risk assessment, incident response, and continuous monitoring. The guide serves as an informational resource, emphasizing the necessity of a structured approach to managing cyber risks across the organization.
