Cyber Benchmarking: Traditional Benchmarking Doesn’t Work In 2022

Cyber Benchmarking: Traditional Benchmarking Doesn’t Work In 2022

Cyber Controls Dictate Price & Limits Available

We surveyed 7 of the most active cyber insurance carriers and asked for their top three cyber security items they look for when underwriting a risk. This chart shows the answers we received more than once.

If you do not appropriately address these minimum-security controls, your price could be 2-3x what a peer would pay who has good controls. And more likely than just paying a premium, you won’t be able to secure the limits you need if you don’t have solid controls.

MFA (Multi-factor Authentication) – layered approach to securing data and applications where a system requires a user to present a combination of two or more credentials to verify a user’s identity for login

EDR (Endpoint Detection & Response) – integrated endpoint security solution that combines real-time continuous monitoring and collection of endpoint data

Encrypted Backups – an extra security measure that is used by entities to protect their data in the event that it is stolen, misplaced, or compromised in some way

Open RDP (Remote Desktop Protocol) – enables network administrators to remotely diagnose problems that individual users encounter and gives users remote access to their physical work desktop computers

Email Screening – the screening of emails for threats prior to them reaching their destination

Rates Are Rapidly Increasing

Rate increases accelerated last year from35% in Q1 to 130% in Q4. Any price benchmarking data that is more than a couple weeks old is going to be irrelevant.

  • It’s not about how much coverage your peers purchase or how much you need, it’s about how much you can secure and can afford
  • Price is impacted by your individual cyber security controls more than it is by your industry, revenues, or record count
  • It is more important to benchmark your cyber security controls against your peers than it is your insurance cost or limits

What We Are Seeing in The Market

  • Carriers have reduced their capacity and are no longer willing to provide more than $5M limits on a single risk
  • Underwriters are seeing an increase in submissions of 700%+and many quotes come down to the last minute
  • If you have poor controls, you likely won’t be able to secure additional limits no matter what you’re willing to pay for them
  • Many insurers are limiting their exposure to ransomware, cyber business interruption, and other first party exposures

Talk to us about your cyber risk mitigation strategy.


This material has been prepared for informational purposes only and was generated from information provided to BKS from the client and/or third-party sources. Therefore, BKS makes no warranty or representation(s) as to the accuracy or appropriateness of the data and/or the analysis herein. This information is not intended to provide, and should not be relied on for, tax, legal or accounting advice. You should consult your tax, legal and accounting advisors for those services.

No Comments yet!

Table of Contents

Recents Post
Renewable Energy SOTM (1)
2024 Renewable Energy State of the Market Update
Congratulations web Header - New '24 (1600 x 900 px) (3)
Samantha Money Promoted to Partner!
Congratulations web Header - New '24 (1600 x 900 px) (1)
Laura Noderer Promoted to Senior Advisor!

This document is intended for general information purposes only and should not be construed as advice or opinions on any specific facts or circumstances. The content of this document is made available on an “as is” basis, without warranty of any kind. Baldwin Risk Partners, LLC (“BRP”), its affiliates, and subsidiaries do not guarantee that this information is, or can be relied on for, compliance with any law or regulation, assurance against preventable losses, or freedom from legal liability. This publication is not intended to be legal, underwriting, or any other type of professional advice. BRP does not guarantee any particular outcome and makes no commitment to update any information herein or remove any items that are no longer accurate or complete. Furthermore, BRP does not assume any liability to any person or organization for loss or damage caused by or resulting from any reliance placed on that content. Persons requiring advice should always consult an independent adviser.

Baldwin Risk Partners, LLC offers insurance services through one or more of its insurance licensed entities. Each of the entities may be known by one or more of the logos displayed; all insurance commerce is only conducted through BRP insurance licensed entities. This material is not an offer to sell insurance.

Get in contact with an advisor today to see how BKS can support you.