CLAIMS
Claims Service and Expertise
When you need to make a claim, you want to work with experts who understand your loss and what to do. That’s why at Great American, our claims professionals specialize in the markets they serve. We'll pair you with claims professionals who have deep industry experience and understand your organization’s specific needs.
A Guide for Your Claims Reporting Experience
Our claims professionals stand ready to help when the unexpected happens. Watch this short video to understand the multiple ways you can report a claim to help ease your experience as you navigate the claims process.
Specialty Claim: Expertise When It Matters Most
When it comes to making a claim, you deserve experts who truly understand your industry and share your priorities. Discover how our dedicated Claims teams bring deep industry-specific expertise to support you when you need it most.
SIU: Keeping the Promise
Your business's unique risks require specialized support. When you buy insurance, you're buying the promise that we can meet our obligations to you. Discover how our Special Investigation Unit (SIU) helps ensure we keep that promise, even when the unthinkable happens.
Expert Claims for Your Cyber Event
A cyber event is one of the most pressing things a business owner can face, with the potential for both legal and financial ramifications. Discover how we work collaboratively with our insureds and vendor response team to help restore your environment.
Workers' Comp: Data & People Make the Difference
By using data-driven insights, our skilled claim professionals can select providers focused on quality care. This helps injured workers recover and delivers superior outcomes for both workers and insured clients.
What do I need to report a claim?
-
Your Name
-
Your contact information (address, phone number and email)
-
Your connection to the claim (For example, are you the policyholder, the agent, an injured party or a witness?)
-
A Great American policy number (as available)
-
The type of loss – auto, property, workers comp, general liability
-
Details of what happened
Report a claim
Other Contacts
Workers' Compensation Claims
Electronic Billing Information
Medical providers can submit bills directly through the Data Dimensions electronic billing system. If you have questions, contact Data Dimensions.
Claims Payments Via Electronic Funds Transfer
To receive Workers' Compensation claims payments electronically, complete this form, and email or mail it to our offices (as noted on the form).
Not sure where to go?
If you're not sure how to proceed, contact our Call Center team.
844 GAIG NOW (844-424-4669)
Option 1: new claims
Option 2: existing claims.
Please call during our regular business hours of 8:00 a.m.-5:00 p.m. Eastern.
Additional Resources
Our claims professionals specialize in the markets they serve.
Securing Your Systems: The Role of Patching Cadence in Cybersecurity
An often-overlooked aspect of cybersecurity is vulnerability and patch management. This article explores what patching cadence is, why it is important and the risks associated with not adhering to a regular patching schedule.
What is Patching Cadence?
Patching cadence refers to the regularity and frequency at which updates and patches are applied to software, systems and applications to address security vulnerabilities. These patches are often released by software vendors to fix bugs, close security gaps and enhance functionality. A well-defined patching cadence ensures that these updates are applied systematically and promptly, minimizing the window of vulnerability.
Why is Patching Cadence Important?
Maintaining a consistent patching cadence is essential for several reasons. It helps organizations proactively defend against known threats and reduce the risk of cyberattacks. Cyber threats are constantly evolving, with new vulnerabilities being discovered regularly. Regular patching helps close these security gaps, protecting systems from potential exploits.
- Compliance and Regulatory Requirements: Many industries are subject to stringent regulatory requirements that mandate regular updates and security measures. Adhering to a patching cadence ensures compliance with these regulations, avoiding potential fines and legal repercussions. It also demonstrates a commitment to maintaining a secure environment, which can be crucial for a business reputation.
- Risk Mitigation: By maintaining a consistent patching cadence, organizations could proactively defend against known threats which may reduce the risk of cyberattacks. Regular patching helps close security gaps, protecting systems from potential exploits.
- Operational Stability: Regular updates not only address security vulnerabilities but also improve the overall stability and performance of systems. By keeping software up-to-date, organizations may avoid unexpected downtimes and ensure smooth operations. This is particularly important for mission-critical systems where any disruption can have significant consequences.
In summary, a consistent patching cadence is vital for mitigating security risks, ensuring compliance with regulatory requirements and maintaining operational stability. This leads to a more secure and reliable environment, which is crucial for the success of any organization.
Risks of Not Adhering to a Regular Patching Cadence
Failing to apply patches promptly exposes systems to vulnerabilities, increasing the risk of cyberattacks, data breaches and financial losses. Regular patching prevents exploitation, protects sensitive data and ensures compliance with regulatory requirements, avoiding penalties and maintaining organizational reputation.
Leveraging CVSS Scores and CVEs to Maintain Patching Cadence
The Common Vulnerability Scoring System (CVSS) measures the severity of software vulnerability with scores from 0 to 10, aiding in prioritizing remediation activities. The terms "Critical," "High," "Medium" and "Low" are used to classify the severity of vulnerabilities based on their potential impact and urgency for remediation. Organizations use CVSS scores from the National Vulnerability Database (NVD) to prioritize and set deadlines for patches of CVEs identified in their environments. The NIST Cybersecurity Framework 2.0 provides examples of software patching.
A CVE, or Common Vulnerabilities and Exposures, identifies publicly known security flaws in software. When a weakness is found, it gets a unique name and number called a CVE. This helps everyone discuss the same issue and understand what needs fixing. Like a library system where each book has a unique code, CVEs help IT professionals find and address specific security problems. By using CVEs, organizations can track and quickly fix known security issues to protect their systems from attacks.
As mentioned above, the National Vulnerability Database (NVD) uses the Common Vulnerability Scoring System (CVSS) to provide qualitative severity ratings for vulnerabilities. The ratings are as follows:
- Critical: 9.0-10.0
- High: 7.0-8.9
- Medium: 4.0-6.9
- Low: 0.1-3.9
Help Secure Your Business with SecurityScorecard
Our dedicated loss control team uses a platform called SecurityScorecard to assist our policyholders in mitigating patch and vulnerability risks identifiable on the internet. To do so, we’ve created alerts and actively monitor the digital footprint of each of our clients.
- Cyber Security
- Cyber Risk
- Loss Control
