Information security at Zurich
Protecting data and safeguarding confidential information about our stakeholders is a priority for Zurich. We take appropriate measures against the unauthorized or unlawful processing of data and against its accidental loss, access, destruction or damage. We address increased regulatory requirements and rapid changes in the landscape of global cyber threats through a variety of programs and initiatives, governed by a global function with regional and local presence. This allows us to proactively address the rapidly changing risks of cyber and information security.
We continuously review our approach and action plans and make adjustments to stay up to date with the risk landscape. Regular updates are provided to senior leaders and the Board of Directors.
Information and cyber security risk is embedded across the organization.
The Chief Information Security Officer sets the overall strategy and security roadmap for the Group and ensures employees have required security skills and knowledge. Regular forums track Zurich’s progress and ensure alignment across the organization. Please read more on Corporate Governance structure of Zurich.
The Chief Information Security Officer reports to the Group Chief Information and Digital Officer, who is a member of the Executive Committee, responsible for overseeing cybersecurity.