π Insurance Questions Extraction Placeholder¶
STATUS: Awaiting insurance form samples
What's Needed¶
This placeholder marks where insurance question extraction and mapping will be documented.
Required Inputs¶
- Allianz cyber insurance application forms
- Chubb cyber insurance forms
- Other major Australian insurer forms
- Renewal vs new application variations
Planned Extraction Process¶
graph TD
A[Insurance Forms] --> B[Extract Questions]
B --> C[Categorize by Domain]
C --> D[Map to Frameworks]
D --> E[Tag Risk Patterns]
E --> F[Unified Question Bank]Question Tagging Schema¶
question:
id: 'ALZ-2024-Q3.2'
text: 'Does your organization enforce multi-factor authentication for all
administrative access?'
metadata:
insurer: 'Allianz'
form_version: '2024-cyber-v3'
form_type: 'renewal'
section: 'Access Controls'
mappings:
frameworks:
- essential_eight: 'Restrict Administrative Privileges'
- iso27001: ['9.4.2', 'A.9.4.2']
risk_patterns:
- 'no_mfa_admin'
answer_type: 'boolean'
evidence_required: true
impacts_premium: true
Expected Categories¶
-
Access Controls
-
MFA requirements
- Privileged access management
-
Password policies
-
Incident Response
-
Response team
- Recovery procedures
-
Notification processes
-
Data Protection
-
Encryption standards
- Backup procedures
-
Data classification
-
Third Party Risk
- Vendor management
- Supply chain security
- Outsourcing controls
Integration Points¶
- Unified Question Bank
- Risk Pattern Framework
- Evidence Collection System
- Premium Impact Calculator
Next Steps¶
- Obtain insurance forms
- Extract and categorize questions
- Create mapping templates
- Build import scripts
See /docs-internal/docs/00-documentation-meta/outstanding-work-tracker.md for status