TowerGroup Study Finds U.S. Insurers Invest in Response to Infrastructure Weaknesses Uncovered in Sarbanes-Oxley Audits
A research report from the Massachusetts-based TowerGroup finds insurers are realizing that the Sarbanes-Oxley Act can serve as a catalyst for long-term financial systems architecture strategy and process improvements.
“The globalization of insurance and the current complex regulatory environment necessitate a systematic, integrated approach to risk management,” stated Cindy Saccocia, senior analyst in the Insurance practice at TowerGroup and author of the research. “Sarbanes-Oxley regulation drives a tight alignment between top-office and daily internal control activities. It calls for improvements to financial management in areas such as risk and capital management that can enhance operational discipline and corporate governance across insurers’ total operations.”
The TowerGroup study estimates that individual firms will invest an average of $250,000 to $750,000 each on Sarbanes-Oxley related activities in 2004 and 2005. These investments will peak by 2006, with some individual insurers expected to invest over $1 million that year to comply with the Act.
Highlights of the research include:
— Insurers are approaching Sarbanes-Oxley prudently and carefully. Any insurance company’s technology spending for the Act will be a long-term strategy to attend to operational changes needed to comply with key requirements. Their initial focus is to document the reporting process and assess gaps that present risk in compliance and reporting.Later in the cycle, they will move through stages of technology integration, enhancement and, finally, maintenance.
— TowerGroup expects the next round of IT spending by insurers, buoyed by Sarbanes-Oxley compliance needs, will be for key applications to close operational and reporting gaps and integrate them with the existing architecture. For some insurers, this will mean large-scale investment in enterprise applications. For others, it will mean small-scale investments in point solutions.
— While the Act requires compliance only from publicly-traded financial institutions, mutual insurers are keeping a close eye on their competitors to mitigate competitive differentiation. That is because top-rate insurers will embrace the legislation as an opportunity to become more agile and responsive to change.
The regulatory compliance efforts often result in additional cost and complexity for the business of insurance. Saccocia noted that insurers must maintain flexible enterprise architecture so that regulation does not place undue burdens on the operation to comply. “Sarbanes-Oxley has exposed weaknesses in the infrastructure, and compliance with the Act can be an opportunity for insurers to realize the benefits of real-time reporting as a step toward enterprise risk management,” she continued.
- T-Mobile’s Network Breached as Part of Chinese Hacking Operation
- Verisk: A Shift to More EVs on The Road Could Have Far-Reaching Impacts
- Survey: Majority of P/C Insurance Decision makers Say Industry Will Be Powered by AI in Future
- Progressive to End Offering Dwelling Fire Insurance