What is a cyber insurance risk assessment?
Comprehensively assess vulnerabilities in your client's cybersecurity
Cyber3 is a superior, low-cost assessment delivering in-depth cybersecurity insights and trusted cyber resilience certification.
The new, comprehensive solution offered by Cyber3, supports businesses in managing vulnerability in cybersecurity. It has been developed to give clarity over risk, and a true understanding of remediation strategies for enhanced security controls. Results are delivered through a report, and a Cyber Risk Management Maturity (CRMM) score gives full clarity for executives, management, and technical specialists.
Cyber3 is the only assessment that includes questions commonly asked by leading insurance underwriters, and certification that can often help with insurance costs. Our digital investigators have been established in the space for many years, and teamed with dedicated insurance specialists, are able to offer certification in support of risk management for insurers and brokers.
Digital investigator guided review
In-depth, 90 minute review to identify key risk indicators
Technical vulnerability scan with our CyberProfiler: Attacker’s Eye View™
ISO 27001 /27701, PCI DSS, NIST, ENISA compliant
Dashboard-style presentation and custom-written report
Straightforward 1-5 score in five areas of risk management maturity
Jargon-less results with visual high/medium/low risk determination
Formal data asset register generated
Improvements prioritised into checklist of measurable actions
Clear and practical remediation advice for every high and medium risk, with commentary on low results
Book client engagement
During onboarding, we offer each clients' management team a selection of dates and times, inviting key roles in risk management to attend and providing an overview of each subject area the assessment will cover.
Digital investigator directed review
A 90 minute 1-to-1 web meeting with one of our experienced digital investigators. The specialist will guide the business through our Cyber3 questionnaire to get an in-depth understanding of maturity in five key areas of risk management: People, Process, Technology, Vendor Management and Data Asset Awareness.
Our team of digital investigators will immediately begin to assess the organisations digital footprint using our advanced scanning and analysis platform to gather an Attacker’s Eye View™ of your business. Learn more about our CyberProfiler service.
Findings & risk remediation
Our specialists will compile a comprehensive report containing your Maturity score, an opinion statement and a prioritised improvement action plan in the form of a cyber essentials checklist. The report also includes a digital asset register and cyber resilience certification.
You will have full visibility throughout, together with explanations where clarity is needed. This should take approximately 80 minutes, leaving 10 minutes to further discuss any of the Q&A, and other advice you may require. If more time is needed, we are happy to extend for up to 120 minutes if this is convenient for you.
What to expect from your cyber insurance risk assessment
The assessment is guided by experienced digital investigators
During the web meeting, your assigned STORM digital investigator will take you through an online assessment, presenting and completing a specially designed, adaptive form with your responses.
For further details, learn more here
Cyber insurance risk assessment pricing
Affordable & revenue-based cybersecurity testing
Our mission is to provide insurers with a high quality, low-cost assessment that delivers in-depth insights for clients of any scale.
To ensure Cyber3 is affordable we provide revenue based pricing with special discounts for partners and re-assessments.
Businesses less than £20m revenue
Get a complete organisational assessment, including maturity scoring of essential processes, an Attackers Eye View™ report and a full remediation strategy. With only 90 minutes of your time via a one-to-one call, we can provide you with a comprehensive security assessment and a path to cyber resilience.
Businesses with revenue between £20m and £50m
For organisations with larger digital estates, we will examine your staff roles, processes, technology, vendor management, and data asset awareness in detail. We will also do a deep dive into your organisation’s online services, no matter your size, to identify the vulnerabilities that attackers will leverage to compromise your organisation.
Businesses with revenue over £50m
For organisations with enterprise digital estates, we provide access to our portal technology to manage your remediation progress. We will also provide our CyberProfiler scanning for up to 10 unique domains. If your business is involved in manufacturing we will also assess your Industrial Control Systems (ICS) for cyber risk.
Cyber insurance risk assessment deliverables
Cyber resilience certification
After the meeting, a copy of the completed response will be provided for you to check. We generally provide the completed report and certification within 3 working days of the meeting.
Please let us know if the report is required more rapidly than this, and we will make all efforts to meet your deadline.