Insurance Readiness and Incident Response: Are You Prepared for What Happens Next? - ACA International

Each week, ACA is highlighting sessions from our upcoming virtual Cybersecurity & Risk Forum. Two sessions will focus on aligning security controls with insurer expectations and building a response plan that works when it matters most. 02/26/2026 9:00 A.M. For many agencies, cybersecurity readiness isn’t just about responding to a data breach. It shows up during insurance renewals, compliance reviews and the day-to-day decisions leaders make about managing risk. Two sessions taking place on Tuesday, March 3, and Wednesday, March 4, at ACA International’s virtual Cybersecurity & Risk Forum will focus on helping organizations strengthen both their security posture and their response strategy. The forum features two dedicated education tracks: Executive Track: Governance, risk management, regulatory exposure and business decision-making IT Track: Detection, containment, escalation procedures and operational response By separating the tracks, the forum allows leaders and IT professionals to dive into the issues most relevant to them — without losing sight of the bigger picture. Tuesday, March 3 IT Track: Code Red Drill: Building Your Incident Playbook (Part 2) Speakers: Pat Henderson, AVP, PRA Group, Inc., and Shea Erickson, CEO, Cyber Husky Having an incident response plan is essential. Ensuring it works under pressure is just as important. In Part 2 of this session, Henderson and Erickson will walk through the core components of building an effective incident response plan, including steps organizations can take before an incident and the key actions required during an incident to maintain business continuity. “Having an incident response plan is the first step to securing an organization from an information security incident,” Henderson said. “Creating a plan ensures you have the proper resources and steps aligned to detect, respond to and remediate threats.” Whether attendees are starting from scratch or evaluating an existing framework, the session provides an opportunity to ask questions, pressure-test assumptions, and learn from peers. “If you don’t know where to start, or want a sanity check against your existing plan, this would be a great opportunity to ask questions and learn from your peers,” Henderson said. Attendees will leave the workshop with a completed incident response plan they can immediately adapt to their organization, along with the clarity and confidence needed to operationalize it before an incident occurs. Wednesday, March 4 Executive Track: Cybersecurity Confidence Check: Closing Gaps Before They Become Risks Speakers: Pat Henderson, AVP, PRA Group, Inc., and Sundar Nagarajan, Information Security Executive, Aon Risk Services Central, Inc. Cyber insurance renewals are becoming more detailed and demanding. In this session, Henderson and Nagarajan will review how aligning security controls with industry best practices can position organizations well for annual cyber insurance submissions and long-term resilience. “Making sure you’re aligning your security controls to industry best practices is going to set your organization up well for your annual cyber insurance submissions, which can help save your organization time and money,” Henderson said. The session will walk through the critical areas of coverage evaluated by insurers and examine how gaps in controls can affect both risk exposure and premiums. “If you don’t have cyber insurance, or want to try to reduce your premium, this would be a great opportunity to see what insurers are looking for and align these gaps with what’s trending in the industry,” Henderson said. For agencies preparing for renewal conversations or simply wanting clarity on their security posture, this session offers a practical roadmap. Are you registered yet? Whether your focus is aligning with insurer expectations or strengthening your incident response playbook, these sessions, along with the others during the event, will provide practical insight to help agencies move forward with greater confidence. Join the virtual Cybersecurity & Risk Forum next week on March 3–5. Register now. Related Content from ACA Daily: Cybersecurity & Risk Forum: Understanding the Two Learning Tracks Build Your Incident Playbook: “Code Red Drill” Opens IT Track at ACA’s Cybersecurity & Risk Forum Can Your Team Contain a Data Breach in 60 Minutes? Inside a Cybersecurity & Risk Forum Simulation Who Owns the Risk? Two Sessions That Will Test Your Cyber Assumptions at the Cybersecurity & Risk Forum Remember, subscribe to ACA Daily and Member Alerts under your My ACA Assistant profile when logged in to acainternational.org.