IA: I would assume you would hold your outsourcer responsible in that case. Don’t they exercise control over your items?
Me: Well, sometimes they do. However, we also have the delivery service companies who transport the stuff, the various hotel, B&B and vacation rental staff that sometimes have oversight, as well as family members and friends we allow to use our stuff when we don’t need it. Many people are handling our assets. Ultimately, however, it’s our stuff, and I need to manage the risk to these investments we’ve made. We want insurance.
IA: I’m not sure I can help you. There’s no way I can assess the risk in this case, and it would be very difficult to assess liability given the innumerable places your personal property may be at any given time. I can’t insure you for potential losses when we can’t determine who is exercising control over your assets. Here’s my card. Call me when your kids settle down.
John McCumber is a security and risk professional, and is the author of “Assessing and Managing Security Risk in IT Systems: A Structured Methodology,” from Auerbach Publications. If you have a comment or question for him, please e-mail John at: Cool_as_McCumber@cygnusb2b.com.