top of page

What is a cyber insurance risk assessment?

Comprehensively assess vulnerabilities in your client's cybersecurity

Cyber3 is a superior, low-cost assessment delivering in-depth cybersecurity insights and trusted cyber resilience certification.

The new, comprehensive solution offered by Cyber3, supports businesses in managing vulnerability in cybersecurity. It has been developed to give clarity over risk, and a true understanding of remediation strategies for enhanced security controls. Results are delivered through a report, and a Cyber Risk Management Maturity (CRMM) score gives full clarity for executives, management, and technical specialists. 

Cyber3 is the only assessment that includes questions commonly asked by leading insurance underwriters, and certification that can often help with insurance costs. Our digital investigators have been established in the space for many years, and teamed with dedicated insurance specialists, are able to offer certification in support of risk management for insurers and brokers. 

Digital investigator guided review

  • In-depth, 90 minute review to identify key risk indicators

  • Technical vulnerability scan with our CyberProfiler: Attacker’s Eye View™

  • ISO 27001 /27701, PCI DSS, NIST, ENISA compliant

Cyber maturity

  • Dashboard-style presentation and custom-written report

  • Straightforward 1-5 score in five areas of risk management maturity

  • Jargon-less results with visual high/medium/low risk determination

A remediation

  • Formal data asset register generated

  • Improvements prioritised into checklist of measurable actions

  • Clear and practical remediation advice for every high and medium risk, with commentary on low results

what is a cybersecurity audit

Book client engagement

During onboarding, we offer each clients' management team a selection of dates and times, inviting key roles in risk management to attend and providing an overview of each subject area the assessment will cover.

Digital investigator directed review

A 90 minute 1-to-1 web meeting with one of our experienced digital investigators. The specialist will guide the business through our Cyber3 questionnaire to get an in-depth understanding of maturity in five key areas of risk management: People, Process, Technology, Vendor Management and Data Asset Awareness. 

Vulnerability testing

Our team of digital investigators will immediately begin to assess the organisations digital footprint using our advanced scanning and analysis platform to gather an Attacker’s Eye View™ of your business. Learn more about our CyberProfiler service.

Findings & risk remediation

Our specialists will compile a comprehensive report containing your Maturity score, an opinion statement and a prioritised improvement action plan in the form of a cyber essentials checklist. The report also includes a digital asset register and cyber resilience certification.

You will have full visibility throughout, together with explanations where clarity is needed. This should take approximately 80 minutes, leaving 10 minutes to further discuss any of the Q&A, and other advice you may require. If more time is needed, we are happy to extend for up to 120 minutes if this is convenient for you.

What to expect from your cyber insurance risk assessment

The assessment is guided by experienced digital investigators

During the web meeting, your assigned STORM digital investigator will take you through an online assessment, presenting and completing a specially designed, adaptive form with your responses.

For further details, learn more here

how it works

Cyber insurance risk assessment pricing

Affordable & revenue-based cybersecurity testing

Our mission is to provide insurers with a high quality, low-cost assessment that delivers in-depth insights for clients of any scale.

To ensure Cyber3 is affordable we provide revenue based pricing with special discounts for partners and re-assessments.

Businesses less than £20m revenue

Get a complete organisational assessment, including maturity scoring of essential processes, an Attackers Eye View report and a full remediation strategy. With only 90 minutes of your time via a one-to-one call, we can provide you with a comprehensive security assessment and a path to cyber resilience.

Businesses with revenue between £20m and £50m

For organisations with larger digital estates, we will examine your staff roles, processes, technology, vendor management, and data asset awareness in detail. We will also do a deep dive into your organisation’s online services, no matter your size, to identify the vulnerabilities that attackers will leverage to compromise your organisation.

Businesses with revenue over £50m

For organisations with enterprise digital estates, we provide access to our portal technology to manage your remediation progress. We will also provide our CyberProfiler scanning for up to 10 unique domains. If your business is involved in manufacturing we will also assess your Industrial Control Systems (ICS) for cyber risk.


Book your Cyber3 cybersecurity assessment

It takes just 3 minutes to make a booking.

Payment will be arranged after your booking is confirmed.


Cyber insurance risk assessment deliverables 

Cyber resilience certification

After the meeting, a copy of the completed response will be provided for you to check. We generally provide the completed report and certification within 3 working days of the meeting.

Please let us know if the report is required more rapidly than this, and we will make all efforts to meet your deadline.

Cyber remediation plan

Your Cyber3 report will contain a cyber essentials checklist for improvements, as well as clearly defining vulnerability in cyber security, specific risk indicators, and an overall maturity score for risk and security controls. 

bottom of page