The only cyber risk assessment that includes questions commonly asked by leading cyber insurance underwriters

SHAPE_01_DK_BLU.png
COMPREHENSIVE 'STANDARDS-BASED' QUESTION SET

Based on cyber security and data privacy standards and best-practice, including
ISO 27001/27701, PCI DSS, NIST, ENISA and others, as well as covering the key requirements of leading cyber insurers this assessment is a new and comprehensive approach to helping clients determine, understand and prioritise practical improvements in cyber risk reduction.

 EASY TO READ DASHBOARD & REPORT

Key cyber risk indicators are displayed in a easy-to-read dashboard-style presentation with scoring explanation.

SHAPE_01_LITE.png
SHAPE_02_LITE.png
 
THE THREE STEPS TO CYBER3 SUCCESS
Arrange Client Engagement
This is delivered by a cyber risk specialist via a web conference
STORM Assessor Performs Review
Our specialist walks the client through each question with full clarification and support
CYBER3 Report Delivered
Jargon-less report with opinion statement and improvement action plan; ranked by criticality
 
KEY RESULTS FROM CYBER3 INCLUDE:

  • Key Cyber Risk Indicators

A dashboard-style presentation of key cyber risk indicators with scoring explanation.

  • Cyber Risk Management Maturity Score

A practical rating on organisational risk management maturity across 5 key areas.

  • Prioritized Improvements Checklist

Recommendations distilled into a list of actions resulting in stepped improvements in maturity.

  • Cyber Specialist Opinion Statement

Objective and evidenced commentary on key risks and advice on addressing them.

  • Certificate of Assessment

Official certificate of assessment issued by STORM.

SHAPE_01_LITE.png
 
SHAPE_02_LITE.png
THE CYBER RISK MANAGEMENT MATURITY LIFECYCLE

The CYBER3 process delivers results in a clear and understandable way for executives, non-technical and technical specialists alike by distilling the results into 5-point scores over five key areas of cyber risk management maturity;
People: staffing, roles, capability and skills
Process: governance, policy and procedures

Technology: security systems and IT strategy

Data Asset Awareness: categorisation and amounts

Vendor Management: oversight, risk and liability

 
SHAPE_02_DARK.png
OUR EXPERTS

Our experts in both cyber risk and cyber incident response bring their many years of experience and innovation to assist clients in their understanding of cyber risk in the context of their business challenges. We assist clients with practical advice, enabling them to manage their risk effectively and ensure that losses from breaches are minimised.

SHAPE_02_LITE_BLU.png
 
UNIQUE SELLING POINTS & BROKER PARTNERS

  1. Designed specifically for existing or prospective cyber insurance clients.

  2. Delivered by a highly experienced cyber risk management professional.

  3. The only assessment that includes questions commonly asked by cyber insurers on prop forms & recognised by many underwriters.

  4. Only 90-minutes of client time via an expert-to-client web conference.

  5. Integrated vulnerability assessment and range of checks on client’s internet presence – the ‘attackers-eye view’.

  6. Assigning an easy-to-track Maturity score reflecting improvement over time.

  7. Helping insureds understand cyber risk in a jargon-less yet in-depth review.

  8. Report quality equivalent to big-4 accountancy at a fraction of the cost. 

  9. Certificate of Assessment and domain scan also provided.

  10. Adding real value to your brokerage risk management capability.

SHAPE_02_LITE.png