Experts Highlight Rising Cyber Risks for Jersey Businesses at Comsure Workshop

In an era where digital threats loom larger than ever, Jersey businesses gathered today, March 11, 2026, for a pivotal workshop hosted by Comsure on "Cyber Risk and Insider Threat."

The event, titled the "Cybersecurity Resilience Workshop," brought together industry leaders to discuss the escalating challenges posed by ransomware, phishing, and, particularly, insider threats. The workshop highlighted the urgent need for stronger defences in a more vulnerable landscape.

web.theinstitutes.org - Building a Cyber Risk Management Framework | The Institutes

Keynote speaker Andy Compton, an esteemed Information & Cybersecurity Leader with a storied career at global giants like HSBC and Citi, set the tone by reminding attendees that "we are all vulnerable."

His extensive experience navigating complex cyber environments highlighted the human element in security breaches, emphasising that no organisation is immune.

Regulatory Frameworks and Compliance Imperatives

The session delved deeply into regulatory landscapes, featuring insights from the Jersey Financial Services Commission (JFSC) and the UK's Financial Conduct Authority (FCA).

Discussions centred on codes of practice, with a spotlight on Principle 3: Organisations must organise and control their affairs effectively, including demonstrating adequate risk management systems.

Delegates were reminded about Paul Vane, Jersey's Information Commissioner, statement in early 2026 about the integral link between cybersecurity and data protection compliance. He urged businesses to adopt proactive measures, such as meticulous logging and swift breach reporting, to mitigate risks and ensure regulatory adherence.

channeleye.media - Paul Vane, Jersey's Information Commissioner - Channel Eye

Punitive consequences for neglecting these duties were starkly outlined: regulatory fines, civil litigation, and even personal liability for executives.

Andy warned that grievances or external pressures can incentivise insiders, and that early indicators, such as behavioural changes, must be addressed promptly to prevent escalation.

The Insider Threat: The Enemy Within

A significant portion of the workshop focused on insider threats, revealing alarming statistics: 60% arise from unintended access outcomes, 28% from malicious actors, and 12% from compromised individuals.

Common rationales for overlooking these risks include resource constraints, fear of business disruption, and competing priorities.

Andy explored why risks are often ignored despite their severe consequences, attributing this to psychological factors such as optimism bias, reactive mindsets, and an aversion to change.

He advocated for comprehensive action plans, including regular risk assessments, employee training programs, and cultivating a culture of accountability.

raconteur.net - Insider threats: why employees are a bigger risk than hackers

Case Studies and Real-World Lessons

To illustrate the real-world impact, the workshop presented the Tesco Bank cyber-attack as a cautionary tale. In this incident, the FCA imposed a £16.4 million fine on the firm for failing to exercise due skill, care, and diligence in protecting customers from a cyber assault. This example highlighted the financial and reputational fallout from inadequate cybersecurity measures.

Andy and Mathew (Comsure) encouraged attendees to review their own risk registers, as stakeholders, including regulators, insurers, and customers, expect transparency and strong risk management.

Call to Action: Prioritising Cybersecurity in Evolving Threats

As cyber threats continue to evolve, this Comsure workshop serves as a timely reminder for Jersey businesses, particularly in the property sector, to prioritise cybersecurity.

By addressing both external and internal risks through proactive strategies, organisations can build resilience and safeguard their operations.

For more information on upcoming events or cybersecurity consultations, contact

Contact info@comsuregroup.com or