Cyber insurtech MGAs and underwriting agencies: Difference between revisions

🌐 A rapidly maturing ecosystem of cyber-specialist MGAs is reshaping how businesses access cyber insurance worldwide. Over the past decade, a wave of insurtech managing general agents has emerged across North America, Europe, and Asia-Pacific, each combining delegated underwriting authority with proprietary technology, embedded cybersecurity services, and data-driven risk selection. This landscape now spans more than twenty dedicated cyber MGAs — from venture-backed unicorns like Coalition ($5B valuation, $770M raised) and At-Bay ($1.35B valuation, $292M raised) to nimble European challengers such as Stoïk, Baobab, and Dattak, and specialist platforms in Australia including Emergence Insurance and Sync Underwriting. Together, these players are building a new category of integrated "InsurSec" platforms that blur the line between insurance distribution and managed cybersecurity operations, challenging traditional carrier-led models with faster underwriting, continuous monitoring, and bundled prevention services.

🔒 The most differentiated players are embedding cybersecurity operations deep into the insurance value chain, moving well beyond scan-based underwriting overlays. At-Bay operates a managed XDR platform through a dedicated security subsidiary with strategic SentinelOne and CrowdStrike alliances. Stoïk runs an in-house CERT with 24/7 services and CrowdStrike-integrated MDR that yields a 15% premium discount. Dattak operates CERT-DATTAK with a claimed average intervention time under two minutes and bundles EDR plus managed SOC as a distinct MDR tier. Eye Security requires policyholders to deploy its Managed XDR service before insurance is even available, making security posture a binding underwriting prerequisite. Elpha Secure bundles endpoint-installed software with reduced retentions and shorter waiting periods for adopters. Rather than merely assessing risk at the point of quote, the leading MGAs are actively managing it throughout the policy lifecycle — creating data feedback loops, reducing loss frequency, and building switching costs that pure-play insurance distributors cannot replicate.

🏗️ Beneath the MGA label, business models are diverging sharply — with a growing subset building toward full-stack risk-bearing. At-Bay acquired an E&S carrier shell from XL Insurance America and began issuing policies on its own Delaware-domiciled paper in 2023, earning an AM Best A- rating. Cowbell launched both a Nebraska domestic surplus lines insurer and a Vermont captive reinsurer, layering owned risk-bearing onto its MGA distribution. Coalition obtained its own admitted carrier, also rated A- by AM Best. These vertical integration moves contrast with the majority of peers — including Stoïk, Baobab, Dattak, Eye Security, and Onda — that remain fully reliant on delegated authority from external carrier partners such as Tokio Marine, Zurich, Hiscox, and Lloyd's syndicates. The split between "asset-light MGA" and "hybrid carrier-MGA" is becoming a defining strategic fault line in the sector, with direct implications for capacity stability, underwriting autonomy, and long-term enterprise value.

🏦 Strategic insurer capital is increasingly flowing into these platforms, creating alignment corridors that often precede deeper integration. Zurich Insurance Group invested $60M in Cowbell's Series C before separately acquiring BOXX outright. Allianz X led Coalition's $250M Series F, and Allianz SE's CEO subsequently joined Coalition's board. Intact Ventures led Resilience's $100M Series D while Intact group carriers serve as its primary underwriting paper. Munich Re Ventures participated in both At-Bay's and Stoïk's funding rounds while also providing reinsurance capacity. Tokio Marine HCC simultaneously serves as risk carrier and equity investor in Stoïk. AXIS Capital both invested in and provides capacity for Elpha Secure, later routing SME cyber submissions to its platform. These dual relationships — combining equity stakes with underwriting capacity or distribution access — suggest that carrier venture arms are functioning as strategic option mechanisms, positioning incumbents to deepen ties or pursue outright ownership as the market matures.

🔄 Indeed, the competitive landscape has already entered a consolidation phase, with strategic acquirers and incumbent carriers accelerating M&A activity. Travelers acquired Corvus Insurance for approximately $435M in early 2024, Zurich Insurance Group completed its full acquisition of BOXX Insurance in July 2025, Ryan Specialty absorbed Pera through its USQRisk acquisition in May 2025, and Brown & Brown integrated Evolve MGA via the Nexus/Kentro Capital deal in late 2023. Meanwhile, Cogitanda was rescued from insolvency by cybersecurity firm DGC AG, and Stoïk executed its first inorganic move by acquiring Belgian competitor CyberContract. These transactions signal that the standalone cyber MGA model is increasingly gravitating toward strategic partnerships, carrier ownership, or platform roll-ups — raising critical questions about which remaining independent players represent the most compelling acquisition targets.

Overview of key players

🛡️ Cyber insurtech MGA competitive landscape

Logo	Company	Founded	HQ location	Main region	Category	Target market	Description
	At-Bay	2016	USA, CA, San Francisco	North America	Cyber MGA / Carrier	SME to Enterprise	U.S. cyber-focused insurtech, full-stack E&S carrier, InsurSec model, $292M raised, $1.35B valuation, AM Best A-
	Baobab Insurance	2021	Germany, Berlin	Europe	Cyber MGA	SME to Upper Mid-Market	Berlin-based cyber insurtech MGA, broker-distributed, AI-native underwriting, SME-to-industrial, €20.1M raised, multi-carrier Lloyd's coverholder
	BOXX Insurance	2018	Canada, Toronto	North America	Cyber MGA / Carrier	SME to Individual	Toronto-founded, Zurich-owned cyber insurtech MGA and Lloyd's coverholder, SME and personal cyber lines, integrated security services, ~1M customers, five continents, $24.5M raised.
	Coalition	2017	USA, CA, San Francisco	North America	Cyber MGA / Carrier	SME to Large	US-domiciled cyber insurtech MGA, multi-carrier capacity, integrated security platform, $5B valuation, $770M raised
	Cogitanda	2016	Germany, Flensburg	Europe	Cyber MGA	SME to Mid-Market	Germany-origin cyber MGA (Assekuradeur), integrated prevention-insurance-incident model, acquired from insolvency by DGC AG, 2025
	Converge Insurance	2021	USA, NY, New York	North America	Cyber MGA	SME to Mid-Market	U.S. cyber insurtech MGA, QBE-backed capacity, $20M funded, broker-distributed, up to $1B revenue appetite
	Corvus Insurance	2017	USA, MA, Boston	North America	Cyber MGA	SME to Large	U.S. cyber insurance MGU, wholesale E&S focus, Travelers subsidiary (~$435M, 2024), $200M+ book, integrated risk-prevention technology
	Cowbell	2019	USA, CA, Pleasanton	North America	Cyber MGA	SME to Mid-Market	US-headquartered cyber insurtech MGA and carrier, SME-to-mid-market focus, $208M raised, Zurich-backed, hybrid risk-bearing platform
	Dattak	2021	France, Paris	Europe	Cyber MGA	SME to Upper Mid-Market	France-domiciled cyber insurtech wholesale broker, SME-to-mid-market, €18M venture-backed, bundled prevention and incident response
	Elpha Secure	2018	USA, NY, New York	North America	Cyber MGA	SME	U.S. cyber insurtech MGA, embedded security + insurance, SME focus, AXIS-backed, >$29M raised
	Emergence Insurance	2015	Australia, Sydney	Asia-Pacific	Cyber Underwriting Agency	SME to Large	Australia/NZ cyber MGA, Lloyd's coverholder, Markel Syndicate 3000 lead, SME-to-enterprise, Steadfast-backed, broker-only distribution
	Evolve MGA	2015	USA, CA, San Diego	North America	Cyber MGA	SME	U.S. cyber-focused MGA, SME segment, Lloyd's-backed, 3,000+ broker partners, acquired by Nexus/Brown & Brown 2023
	Eye Security	2020	Netherlands, The Hague	Europe	Cyber MGA	SME to Mid-Market	Netherlands-based integrated cyber risk platform bundling managed XDR, incident response, and cyber insurance for European mid-market enterprises
	Invision Cyber	2025	UK, London /  USA	Europe / North America	Cyber MGA	Mid-Market to Large	UK-based Lloyd's coverholder MGA, cyber-only, Trend Micro telemetry-linked underwriting, US E&S market, up to USD 10M capacity
	Measured Analytics and Insurance	2018	USA, UT, Salt Lake City	North America	Cyber MGA	SME to Mid-Market	Salt Lake City, cyber insurance MGA, AI-driven underwriting, SMB to mid-market, Canopius/SCOR capacity, wholesale broker distribution
	Onda	2022	UK, London /  USA /  France	Europe	Cyber MGA	SME to Mid-Market	UK/France/U.S. broker-facing cyber MGA platform, Lloyd's coverholder, mid-market focus up to $/£/€ 1B revenue, Navigator insurability platform
	Pera	2023	USA	North America	Cyber MGA	Large Corporate	U.S. large-corporate excess cyber and tech E&O MGA, Desq/USQRisk division, Chaucer-backed, acquired by Ryan Specialty 2025
	Resilience	2016	USA, CA, San Francisco	North America	Cyber MGA	Mid-Market to Large	US-based cyber insurtech MGA, integrated insurance-plus-security platform, Intact group capacity, mid-market to large enterprise, over $225M raised
	SafeInside Insurance	2022	USA, CA, Palo Alto	North America	Cyber MGA	Mid-Market to Large	U.S. cyber insurance MGA launched by Safe Security, inside-out API telemetry, venture-backed, broker-carrier embedded distribution
	Stoïk	2021	France, Paris	Europe	Cyber MGA	SME to Mid-Market	Paris-based cyber MGA, integrated underwriting-prevention-response, six European markets, ~€50M GWP, ~€70M raised
	Sync Underwriting	2024	Australia, Sydney	Asia-Pacific	Cyber MGA	SME to Mid-Market	Australian cyber-specialist MGA, broker-distributed, Tokio Marine and Lloyd's capacity, Rhodian/Amwins network, SME focus, launched 2024

🛡️ Cyber Insurtech MGA — M&A Opportunity Comparison Table

Logo	Company	Est. GWP	Total Funding	Last Known Valuation	Key Shareholders / Investors	Acquired?	Link with AXA
	At-Bay	$380M ARR (Jan 2023)	$292M	$1.35B (2021)	Lightspeed, Khosla, Icon Ventures, Munich Re Ventures, M12, Qumra Capital, Acrew Capital, ION Crossover Partners	No — Independent	AXA SA listed as reinsurer in capacity panel
	Baobab Insurance	n.d.	€20.1M	n.d.	Viola FinTech, eCAPITAL, Augmentum Fintech, Project A Ventures, La Famiglia, Discovery Ventures	No — Independent	None identified
	BOXX Insurance	n.d.	$24.5M	n.d.	Zurich Insurance Group (full owner), Cyber Mentor Fund, SixThirty	Yes — Acquired by Zurich (July 2025)	AXA collaboration in Spain (Jan 2024, SME cyber risk prevention)
	Coalition	$775M+ run rate (July 2022)	$770M	$5B (2022)	Allianz X, Index Ventures, Ribbit Capital, T. Rowe Price, Durable Capital, Whale Rock, Valor Equity Partners, General Atlantic	No — Independent	Historical carrier lineage: Coalition Insurance Company predecessor names include "AXA Art Insurance Corporation" (shell lineage only, no present-day AXA tie)
	Cogitanda	n.d.	n.d.	n.d.	DGC AG (post-insolvency acquirer)	Yes — Acquired by DGC AG from insolvency (Mar 2025)	None identified
	Converge Insurance	n.d.	$20M	n.d.	Forgepoint Capital, QBE Ventures	No — Independent	Founder Anthony Dagostino departed to AXA XL (Sep 2023)
	Corvus Insurance	$200M+ book	$162M	~$750M (Series C)	Travelers (full owner), Bain Capital Ventures, Insight Partners, Telstra Ventures, .406 Ventures	Yes — Acquired by Travelers (~$435M, Jan 2024)	None identified
	Cowbell	$200M+ run rate (2021)	$208.3M+	n.d.	Zurich Insurance Group, Anthemis, Permira, Prosperity7, Brewer Lane Ventures, PruVen Capital, NYCA Partners, Viola FinTech, ManchesterStory	No — Independent (Zurich strategic investor)	None identified
	Dattak	€10M (2024); €22M target (2025)	€18M	n.d.	XAnge, Breega, Bpifrance	No — Independent	CEO Charlotte Couallier is former AXA France commercial partnerships director; board member Matthieu Bébéar is ex-Chief Business Officer of AXA
	Elpha Secure	n.d.	>$29M	n.d.	Canapi Ventures, Stone Point Ventures, AXIS Capital, State Farm Ventures, The Hartford STAG Ventures, Fermat Capital Management, EOS Venture Partners	No — Independent	None identified
	Emergence Insurance	n.d.	n.d.	n.d.	Steadfast Group Limited (33.33%), Hollard Insurance	No — Independent (Steadfast associate)	None identified
	Evolve MGA	n.d.	None (acquired)	n.d.	Brown & Brown / Nexus Underwriting (full owner)	Yes — Acquired by Nexus / Brown & Brown (2023)	Historical capacity panel included XL Catlin / AXA XL
	Eye Security	n.d.	€57.5M	n.d.	J.P. Morgan Growth Equity Partners, Bessemer Venture Partners, TIN Capital	No — Independent	None identified
	Invision Cyber	n.d.	n.d.	n.d.	Vector Investment Capital (75%+ control), Correlation Holdings (minority at Acies MGU level)	No — Independent	Co-founder Stuart Essex formerly Head of UK PI at AXA XL
	Measured Analytics and Insurance	n.d.	Undisclosed (2 rounds)	n.d.	Signal Peak Ventures, Origin Ventures, Royal Street Ventures, Silicon Valley Data Capital, AV8 Ventures	No — Independent	None identified
	Onda	n.d.	n.d.	n.d.	n.d.	No — Independent	None identified
	Pera	n.d.	$3.25M (group seed)	n.d.	Ryan Specialty (full owner), Maiden Holdings (prior seed)	Yes — Acquired by Ryan Specialty (May 2025)	None identified
	Resilience	n.d.	>$225M	~$650M (2021)	Intact Ventures, General Catalyst, Lightspeed, Founders Fund, CRV, UL Ventures, Shield Capital	No — Independent (Intact strategic partner)	None identified
	SafeInside Insurance	n.d.	>$170M (group)	n.d.	Avataar Ventures, BT Group, Sorenson Capital, Prosperity7, Eight Roads, Telstra Ventures	No — Independent	None identified
	Stoïk	~€50M (2025)	~€69.8M	n.d.	Alven, a16z, Munich Re Ventures, Tokio Marine HCC, Impala, Opera Tech Ventures, Anthemis	No — Independent	Henri de Castries (former AXA CEO) participated as business angel in Series A (June 2022)
	Sync Underwriting	n.d.	n.d.	n.d.	Rhodian Group (equity), Amwins (minority in Rhodian)	No — Independent	None identified

At-Bay

🏢 At-Bay is a U.S.-based insurtech founded in 2016 that underwrites cyber, technology E&O, and MPL through its Delaware-domiciled E&S carrier, At-Bay Specialty Insurance Company, rated AM Best A- stable. The company transitioned from an MGA/fronted program to full-stack carrier status, completing its carrier acquisition from XL Insurance America in January 2023 and beginning to issue policies on its own paper in August 2023. Co-founded by Rotem Iram (CEO) and Roman Itskovich (CRO), both Harvard Business School graduates, At-Bay has raised $292M in venture capital at a $1.35B post-money valuation.

💰 Funding and investors. At-Bay raised $292M across six rounds from seed through a Series D extension, with the $185M Series D in July 2021 and a $20M extension in October 2021 setting the $1.35B valuation. The investor base spans generalist venture funds (Lightspeed Venture Partners, Khosla Ventures, Icon Ventures), a strategic reinsurer venture arm (Munich Re Ventures), and a corporate venture fund (M12), alongside growth investors Qumra Capital, Acrew Capital, and ION Crossover Partners.

🏗️ Carrier evolution. In its initial phase, At-Bay operated a fronted program launched in May 2022 with Trisura Specialty Insurance Company as issuing carrier and The Hartford Steam Boiler as lead reinsurer, with reinsurance placed by Guy Carpenter. The transition to full-stack carrier status was completed through the acquisition of a Delaware-domiciled E&S carrier (formerly XL Select Insurance Company), which received an AM Best A- rating in April 2023, reaffirmed with stable outlook in August 2025.

🔒 InsurSec platform. At-Bay operates an integrated insurance-and-security model anchored by its Stance Exposure Management platform, providing vulnerability scanning, dark web monitoring, AI-powered email fraud alerts, vCISO advisory, and security awareness training. Access to Stance is embedded in surplus cyber and tech E&O policies via an Embedded Security Fee and endorsement, while a pre-bind Security Report delivers cyber risk analysis and recommendations during the quoting process.

🖥️ Managed security services. MDR services are provided through subsidiary At-Bay Security, LLC, offered separately from insurance and not limited to policyholders; a June 2024 announcement described enterprise-grade MDR powered by CrowdStrike with 24/7 SOC monitoring. In July 2025, At-Bay launched an MXDR platform and a strategic alliance with SentinelOne, expanding its managed security product line alongside its in-house Response & Recovery digital forensics and incident response team.

📜 Policy coverage. The published cyber policy form (AB-CYB-001.2, 08/2023) uses a modular claims-made structure with first-party coverages including incident response costs, business interruption (direct and contingent), cyber extortion, and financial fraud (social engineering and computer fraud). Third-party Insuring Agreements cover information privacy liability, regulatory liability (including GDPR penalties), PCI-DSS liability, network security liability, and media liability, with notable exclusions for war, infrastructure failure, and prior acts.

📊 Financial performance. Carrier-level statutory reporting shows $154.5M in gross premium and a 98% combined ratio in 2023, with net income of $1.29M. Company-disclosed annual recurring GWP reached $380M as of January 2023, up from a $240M run-rate in 2021 that represented 600% year-over-year growth, and the company employs more than 300 people across hubs in Atlanta, Chicago, New York City, San Francisco, and Tel Aviv.

🤝 Distribution and market. At-Bay distributes through wholesale brokers and digital channels, operating a dedicated broker platform and API strategy reinforced by its August 2022 acquisition of Relay, a multi-carrier digital distribution marketplace maintained as an operationally independent unit. The company serves close to 40,000 U.S. businesses, primarily SMB by count but extending to mid-market and enterprise through its expanded $5B revenue ceiling and $10M aggregate limit architecture.

⚠️ Risk factors. Key risk considerations include continued reliance on reinsurance despite the carrier transition, systemic cyber aggregation exposure across first-party coverages, regulatory scrutiny inherent in E&S underwriting and corporate control transactions, and technology execution risk tied to third-party vendor dependencies in MDR services. The Relay acquisition introduces integration risk as the platform is maintained operationally independent while being embedded within At-Bay's distribution strategy.

Baobab Insurance

🌳 Baobab Insurance is a Berlin-domiciled insurtech managing general agent (Baobab Insurance GmbH) registered under German law as an insurance agent (§ 34d GewO) at IHK Berlin and appointed as a Lloyd's coverholder acting on behalf of Lloyd's Insurance Company S.A. The company was founded in 2021 by Vincenz Klemm (CEO) and Anton Foth (CTO), and operates from its Berlin headquarters with a branch in Rotterdam, Netherlands. Baobab specializes in cyber insurance, e-crime, and IT liability products distributed through brokers across Germany, Austria, and the Benelux.

🤖 AI-native underwriting. Baobab frames its underwriting as AI-native and data-first, combining automated underwriting, dynamic pricing, and continuous portfolio management with a machine-learning risk model co-financed by Investitionsbank Berlin and the European Regional Development Fund. The platform integrates continuous monitoring, weekly scanning, and vulnerability notification as core components of the customer experience. Investor communications and partner announcements consistently emphasize this technology-driven approach as a key differentiator.

🛡️ Product suite. The flagship CyberSafe product covers first-party exposures including business interruption (including cloud failure), data and system recovery, hardware damage, crisis communications, cyber fraud, and BYOD incidents, alongside third-party coverages spanning network security liability, privacy liability, media liability, PCI-DSS penalties, IP rights infringement, and contractual penalties. Embedded breach response services include forensic investigation, notification support, crisis management, and 24/7 emergency hotline access. Adjacent products include an e-crime insurance jointly launched with Liberty Specialty Markets (limits up to €5M) and an IT pecuniary loss liability cover with sums insured up to €15M.

🎯 Customer segments. Baobab's disclosed revenue thresholds indicate a product and authority trajectory progressing from SME-focused underwriting (companies up to €200M turnover) through mid-market (up to €500M via Lloyd's coverholder status) to upper industrial clients (up to €1B via the SCOR Syndicate at Lloyd's). This upmarket expansion is reinforced by capacity announcements emphasizing industrial clients and the upper industrial sector. Actual customer mix by band, policy count, and GWP contribution by segment are not publicly disclosed.

📊 Distribution and expansion. Broker distribution is structurally central, supported by a broker portal with digital application and quotation flows, customer scanning views, risk visualization, and cyber expert support for broker meetings. Baobab launched in Germany in September 2022, expanded to Austria in March 2023, and became active in the Benelux as of November 2025. Multiple EEA supervisory listings evidence cross-border intermediary status across Lithuania, Estonia, and the Netherlands.

🏦 Capacity providers. Baobab places risk across multiple carriers and Lloyd's syndicates, identifying Zurich Insurance Europe AG as the primary risk carrier for its cyber offering, with additional relationships including ERGO, Liberty Specialty Markets, Tokio Marine Kiln, Talbot Underwriting, and Argenta Syndicate Management. The January 2026 SCOR partnership via the SCOR Syndicate at Lloyd's extends CyberSafe underwriting capacity to companies with annual revenue up to €1B in Germany and Austria. Quota share, excess of loss details, binder terms, and per-risk aggregate capacity are not publicly disclosed.

💰 Funding. Baobab has raised €20.1M in total venture funding across pre-seed (€3.5M, January 2022, led by Project A Ventures), seed (January 2023, led by Augmentum Fintech), and Series A (€12M, June 2025, led by Viola FinTech and eCAPITAL Entrepreneurial Partners). Series A proceeds were positioned for building an active risk mitigation platform, team growth, and expansion to additional EU markets within 12 months. Around the Series A, headcount stood at approximately 30 employees.

🔍 Competitive positioning. Within the cyber MGA ecosystem, Baobab most closely resembles an integrated European model combining broker-led distribution and embedded cyber services, comparable to Coalition and At-Bay in the US and Stoïk and Eye Security in Europe. The company's distinct signal is its progression to higher revenue bands via Lloyd's-related authority and the SCOR partnership. Investor communications describe loss ratios significantly below market average, though quantitative GWP, policy count, and financial metrics are not publicly disclosed.

⚠️ Risk factors. Key risks include capacity dependency (premium concentration on undisclosed carrier splits), systemic cyber aggregation as eligibility bands expand to €1B revenue, regulatory and conduct risk in cross-border operations, competitive pressure from well-capitalized peers and incumbent carriers, and execution risk as post-Series A expansion plans require scaling underwriting, claims, security services, and multi-jurisdiction regulatory compliance simultaneously.

BOXX Insurance

🏢 BOXX Insurance Inc. is a cyber-focused insurtech and managing general agent founded in 2018 and headquartered in Toronto, co-founded by Vishal Kundi (CEO, with approximately 20 years of global insurance experience) and Mike Senechal (a technology entrepreneur whose prior fintech venture was acquired by SoFi). The company operates under a delegated authority model as a licensed MGA and Lloyd's coverholder, underwriting, pricing, and selling cyber insurance policies while maintaining partnerships with external capacity providers including Lloyd's syndicates and Munich Re's Boiler Inspection and Insurance Company of Canada. Neil Morrison serves as Chair of the Board, with senior leadership including Jonathan Weekes (President, Canada), Philip Baker (Chief Underwriting Officer), Steve Penney (CTO), Neal Jardine (Chief Cyber Intelligence and Claims Officer), and Jack Brooks (Head of Hackbusters and Virtual CISO).

💰 Funding and ownership. BOXX raised a total of US$24.5 million in institutional venture capital across two rounds over approximately 16 months, with Zurich Insurance Group serving as lead investor in both: a US$10 million Series A in September 2021 (co-invested by Cyber Mentor Fund and SixThirty Ventures) and a US$14.4 million Series B in January 2023 led by Zurich Insurance Company Ltd. Zurich's relationship with BOXX evolved from a global collaboration announced in September 2021 emphasizing integrated cybersecurity and insurance for SMEs and consumers, through lead investment in both rounds, to a completed full acquisition on 3 July 2025 positioning the platform for global retail and SME cyber distribution. BOXX stated it would continue to operate as a standalone entity following the transaction, with capital strategy expected to shift from standalone venture financing to Zurich group priorities.

⚙️ Business model and economics. BOXX operates as an MGA retaining a fixed percentage of premiums collected to fund operations, with the remainder supporting claims and capital costs borne by its insurance backers under a standard delegated authority fee arrangement. The company serves three customer segments — SME commercial cyber, consumer and personal cyber, and affinity and partner-distributed business — with the disclosed customer mix of hundreds of thousands of individuals and close to one million total customers structurally consistent with a material embedded, affinity, and consumer component alongside the commercial book. Distribution flows primarily through insurance brokers and partners, supplemented by app-based policy management and claims filing for certain plans, and corporate partner solutions targeting banking, insurance, retail and e-commerce, and mobile operator and telco verticals.

📦 Product architecture. The core product suite includes Cyberboxx Business 5.0 (a modular, claims-made cyber, data, and privacy policy with first-party modules spanning incident response, cyber extortion, data recovery, bricking, business interruption variants, reputation protection, and key-person cover, plus third-party modules covering privacy liability, regulatory defence, PCI DSS, media, and network security, and financial crime modules for social engineering), Cyberboxx Home (personal cyber insurance plus Equifax identity and credit monitoring, underwritten by Munich Re's BIIC, with illustrative CAD $25,000 limits across cyber attack, fraud, bullying, data breach, and home title recovery), and Tech E&O by BOXX (encompassing professional E&O, technology E&O, technology products liability, technology discrimination liability, first-party cyber modules, and financial crime coverage including invoice manipulation). Cyberboxx Business uses modular declarations so coverage applies only for insuring agreements with a stated limit, and both the Cyberboxx Business and Tech E&O specimens include Lloyd's-signed war and cyber operation endorsements with attribution frameworks referencing specified states and impacted state definitions. Underwriting signals collected at application include last-12-month gross revenue, employee count, desired cyber limit, and disclosure of higher-risk activities such as adult content, cannabis, cryptocurrency, data aggregation, debt collection, managed IT, payment processing, and gambling.

🛡️ Cybersecurity services layer. BOXX differentiates through an integrated prevention-led services model encompassing pre-bind support (external attack surface and vulnerability monitoring, security-control posture data collection on MFA, backups, patch cadence, and EDR) and in-force services (real-time threat monitoring, dark web hacker chatter surveillance, external attack surface monitoring, actionable alerts, and vendor discounts for EDR, XDR, MFA, and cloud backup tooling). The Hackbusters incident response unit engages before a claim is filed, providing continuous scanning, dark web monitoring, and up to three hours of free assurance and guidance before the client needs to consider filing a formal claim. The November 2022 acquisition of Templarbit, a Palo Alto-based cyber threat intelligence platform focused on vulnerability identification across digital assets, internalized proprietary threat intelligence capabilities rather than relying purely on third-party tooling, with the acquired company's founder joining BOXX Labs.

🌐 Distribution and geographic footprint. BOXX operates across Canada and the United States with selective products and collaborations in Europe and other regions, maintaining reported office locations in Toronto, Miami, Zurich, Dubai, and Mumbai. U.S. market entry was formally announced in October 2021 with the appointment of Hilario Itriago as President of BOXX USA, and the U.S. entity BOXX Insurance LLC holds National Producer Number 20139876 with registrations across multiple states as an insurance producer. European partnerships include the AXA collaboration launched in Spain in January 2024 for small business cyber risk prevention (featuring perimeter scanning, dark web monitoring, employee awareness training, and an instant response wallet) and a personal cyber product partnership with Zurich in Switzerland announced in May 2024.

🏦 Capacity providers and partnerships. Both Cyberboxx Business and Tech E&O policy specimens contain endorsements signed on behalf of Certain Lloyd's Underwriters, confirming Lloyd's participation as a capacity provider, while Cyberboxx Home is separately underwritten by the Boiler Inspection and Insurance Company of Canada, a Munich Re company, and BOXX states its insurance partners are rated A- or better referencing backers including Munich Re and Hartford Steam Boiler. The Equifax partnership embeds identity and credit monitoring services into the Cyberboxx Home product, and in India BOXX supports Housing.com customers with cyber protection as a partner distribution example. The licensing framework combines U.S. producer licensing at the entity level, Lloyd's capacity access via coverholder arrangements, and local admitted carrier underwriting for certain Canadian personal cyber cover.

📈 Operational scale and competitive positioning. BOXX disclosed protecting over 250,000 individuals and 10,000 businesses as of January 2023 with a headcount of 36 (up from 5 in the preceding year), and by July 2025 had scaled to close to one million total customers across five continents. Within the cyber insurtech MGA ecosystem including peers such as At-Bay, Coalition, Corvus, Cowbell, Resilience, Stoik, and Eye Security, BOXX clusters most closely with prevention-led cyber insurance plus security services platforms but stands out by maintaining a visible personal and household cyber line alongside SME and partner-distributed offerings. Post-acquisition integration into Zurich's platform via Zurich Global Ventures is expected to strengthen distribution access and long-term capacity stability relative to standalone MGAs.

⚠️ Risk factors and outlook. Key structural risks include capacity dependency inherent to the coverholder and MGA model exposing BOXX to repricing, underwriting authority constraints, and performance management tightening by capacity providers, alongside systemic cyber aggregation risk illustrated by the war and cyber operation endorsements in policy specimens addressing state-linked cyber events. Regulatory complexity across multi-jurisdictional privacy breach response and defence regimes will intensify as BOXX scales internationally, while acquisition integration execution risk persists around product integration, distribution alignment, and technology platform consolidation under Zurich ownership with limited disclosed post-close operational detail. Maintaining service quality across the Hackbusters response unit, virtual CISO guidance, and continuous monitoring infrastructure at scale is cost-intensive and operationally complex as the customer base approaches seven figures, though Zurich's balance sheet and global infrastructure may mitigate standalone resource constraints.

Coalition

🛡️ Coalition is a Delaware-incorporated cyber insurtech managing general agent that launched publicly in December 2017 with initial capacity from Swiss Re Corporate Solutions and Argo. The company operates a hybrid structure combining an insurance distribution entity (producer and surplus lines broker in the US), a multi-carrier capacity model, a licensed admitted carrier (Coalition Insurance Company, NAIC #29530), affiliated cybersecurity services through Coalition Incident Response, and a reinsurance intermediary branded Coalition Re.

👤 Leadership. Co-founded by CEO Joshua Motta — whose background spans Cloudflare, Goldman Sachs, the CIA, and Microsoft — and John Hering, whose experience includes founding cybersecurity companies such as Lookout, Cloudflare, OpenDNS, and HackerOne. The executive team includes a Chief Revenue Officer, CFO, CPO, CTO, Head of Insurance, General Counsel, CMO, Chief Underwriting Officer, and Chief of Staff, with Allianz SE CEO Oliver Bäte joining the board in late 2023.

💰 Funding. Coalition raised a cumulative $770M across six rounds from a February 2018 seed through the $250M Series F in July 2022, which was led by Allianz X and valued the company at $5B. The investor base blends technology-focused growth capital (Index Ventures, Ribbit Capital, Valor Equity Partners) with crossover asset managers (Durable Capital, T. Rowe Price, Whale Rock) and strategic insurtech capital (Allianz X).

🎯 Underwriting scope. US appetite covers organizations with up to $5B in annual revenue and up to $15M in limits, with enhanced features such as the Vanishing Retention endorsement and unlimited reinstatements reserved for businesses under $100M revenue. UK positioning targets businesses under £1bn revenue with premiums from £111 to £200,000+, and Coalition accepts nearly every industry except adult entertainment, cannabis, casinos, data aggregators, and payment processors.

📄 Products. The flagship Coalition Active Cyber Policy, effective April 15, 2025, provides standard coverages including business interruption, ransomware and cyber extortion, social engineering, invoice manipulation, and regulatory liability, with endorsements for deepfake response, bodily injury, and pollution liability. Technology E&O and miscellaneous professional liability are available for eligible businesses, and policy economics incentivize Coalition's affiliated response through $0 out-of-pocket digital forensics costs.

🔍 Technology platform. Coalition Control integrates proprietary risk telemetry with BinaryEdge internet-scale scanning, attack surface monitoring, third-party risk monitoring, security notifications, and the CoalitionAI Security Copilot for vulnerability interpretation. Policyholders receive full platform access, with premium credits of up to 12.5% for MDR adoption and additional funds transfer fraud sublimits tied to security awareness training enrollment.

🤖 Wirespeed and MDR. The November 2025 acquisition of Wirespeed adds automated managed detection and response with a median time-to-verdict of 1,801 milliseconds and 99.99% alert noise reduction, integrating data from Coalition's Active Data Graph including external attack surface monitoring and cyber claims data for 24/7 protection.

🏦 Capacity and geography. Disclosed capacity counterparties include Swiss Re Corporate Solutions, Arch Insurance North America, Lloyd's of London, Ascot Group, and Aspen Specialty Insurance Company under a multi-year agreement effective April 2024, plus regional carriers in Australia (Allianz Australia, MSIG, HDI Global SE). Coalition distributes through brokers across eight countries — the US, Canada, UK, Germany, Denmark, Sweden, France, and Australia — using jurisdiction-specific regulatory structures.

📈 Financials and scale. Coalition reported over 160,000 customers and run rate GWP exceeding $775M as of July 2022, up from 52,000 customers and $325M run rate premium in September 2021. Coalition Insurance Company holds an AM Best A- (Excellent) financial strength rating as of July 2024, and the company disclosed nearly 200% revenue growth year-over-year in its 2022 funding announcement.

Cogitanda

🏢 Cogitanda is a Germany-origin cyber insurance MGA (Assekuradeur) founded in 2016 that operates under delegated authority, placing cyber coverage with multiple external risk carriers while providing end-to-end claims management and cyber risk prevention services. The pre-insolvency group comprised five German entities — COGITANDA Dataprotect AG, Risk Prevention GmbH, Insurance Services GmbH, Claims Services GmbH, and Managed Services GmbH — spanning the full cycle from underwriting design to incident coordination. Following the sudden death of founder Jörg Wälder in 2023 and subsequent economic distress, the group entered insolvency in November 2024 and was acquired via asset deal by DGC AG in March 2025, with the brand retained and operations continuing from Flensburg.

👥 Leadership. Named executives include Walid Schalesi (Group Chief Actuary) and Alain Bianco (Group Chief Underwriting Officer), confirmed in post-acquisition product communications. Jens Lison was referenced as CEO of COGITANDA Dataprotect AG in 2024 capacity expansion coverage, though his current post-acquisition role is unconfirmed. The acquisition preserved the core team and key personnel, with approximately 70 employees transferred in the asset deal from a pre-insolvency group of roughly 150.

🔄 Business model. Cogitanda's integrated model spans three functions: delegated-authority placement of cyber insurance with multiple external risk carriers, end-to-end cyber claims management performed on behalf of those carriers, and cyber risk prevention services for policyholders and broker networks. The current website positions this as "360° cyber protection," integrating prevention, monitoring, insurance, and crisis management alongside DGC's cybersecurity infrastructure. The company historically operated in Germany with documented expansion into Austria.

📦 Legacy products. The established Cyber Pro+ product was a modular, configurable offering organized around five coverage groups: attacks on reputation and identity, attacks on payment methods and accounts, attacks on hardware/software and data, business interruption, and liability and data protection incidents. Formal policy conditions (AVB Version 1.0) date to July 2019, and the product included an explicit war exclusion clause. An additional "technical insurance" component covered electronics and machinery with simplified declaration mechanics.

🚀 Post-acquisition products. CYBERPROTECTION was launched after the DGC acquisition as a new cyber insurance product with a digital application workflow and a built-in CYBERPROTECTION Check risk assessment. The product features tiered structuring (Smart, Advanced, Extended) with streamlined underwriting for specific revenue bands. Embedded incident coordination includes a 24/7 cyber claims hotline, expert crisis team assembly, structured daily briefings, and forensic integrity protocols.

🔍 Cybersecurity services. Prevention and monitoring capabilities draw on DGC's infrastructure, including external vulnerability detection via cyberscan.io, penetration testing, security awareness training, and a 24/7 Cyber Defence Operation Center (CDOC). Legacy brochures describe a prevention stack encompassing employee training, audits, vulnerability analyses, and monitoring. Post-incident response orchestration is documented in a detailed emergency plan covering forensic data requirements, network topology collection, and law enforcement coordination.

🤝 Distribution and capacity. Distribution is broker-centric with a portal-driven workflow; the AXON quoting platform remained accessible during the insolvency period. Two German risk carriers — SV SparkassenVersicherung Gebäudeversicherung AG and Württembergische Versicherung AG — continued to support new business and renewals post-acquisition. International capacity from Everest Insurance and IQUW expanded the product for clients with revenues up to €250 million in Germany and Austria, with policy limits up to €7.5 million.

🏅 Competitive positioning. Cogitanda aligns with the European cyber MGA and services cluster, competing against US platforms such as At-Bay, Coalition, Corvus Insurance, Cowbell, and Resilience, and European challengers including Stoïk, Eye Security, Baobab Insurance, and Dattak. Its competitive moat rests on integrated prevention-insurance-incident management, broker portal lock-in, and demonstrated capacity continuity through insolvency. Academic research underscores structural challenges including systemic aggregation risk and war exclusion uncertainty.

⚠️ Risks and outlook. Key risk factors include strong dependency on third-party capacity providers, systemic cyber aggregation exposure, war exclusion and attribution dispute risk, post-insolvency integration challenges in re-establishing contracts and controls under new group governance, and historical key-person risk sharply demonstrated by the founder's death as a direct precursor to insolvency. Cogitanda's post-acquisition strategy centers on the combined cybersecurity and insurance proposition, leveraging DGC's security operations and a digitized underwriting workflow to rebuild and scale the business under new ownership.

Converge Insurance

🏢 Converge Insurance is a U.S. cyber-focused managing general agent and program administrator founded in 2021 and headquartered in New York City. Operating under the legal name Converge Inc. d/b/a Converge Insurance Service Solutions, the company holds surplus lines agency and producer licenses across multiple states and serves companies nationwide with up to $1 billion in annual revenue.

👤 Leadership. Founder Anthony Dagostino served as initial CEO before departing in September 2023 to join AXA XL, with Tom Kang assuming the chief executive role. The executive team includes CTO Howie Altman, appointed January 2026 from Bridgewater Associates and Semsee, and CFO David Kimmel, appointed May 2025 with JPMorgan and Deutsche Bank experience. Functional heads drawn from Chubb, AXIS Capital, Swiss Re, Munich Re, Marsh, and other major carriers reinforce an underwriting-first organizational identity.

💰 Funding. Converge has raised $20 million in disclosed capital across two rounds: a $15 million Series A led by cybersecurity-focused venture firm Forgepoint Capital in August 2023, and a $5 million strategic investment from QBE Ventures in March 2025. Forgepoint managing directors Don Dixon and Andrew McClure joined the board following the Series A. Specialist press reported potential plans for a Series B in 2025, though no confirmed close appeared in public sources.

📦 Products. The flagship ConvergeElements policy provides primary and excess cyber coverage for companies with up to $100 million in revenue at launch, while ConvergeConnect delivers primary coverage through prequalified technology provider partnerships with behind-the-firewall data access for companies up to $750 million. Subsequent capacity expansions extended the appetite across all product lines to $1 billion in revenue, and the company also offers API products for direct broker access.

🛡️ Cyber services. Beyond insurance, Converge bundles cybersecurity services including virtual CISO support with unlimited access to cyber practitioners, free incident response plans aligned with NIST guidance, and tailored risk remediation roadmaps incorporating risk scores, network perimeter monitoring, dark web credential monitoring, and preferred vendor access. The company website also signals expansion into Technology E&O, Media Liability, and Professional Liability.

🏦 Capacity providers. QBE North America serves as the primary capacity provider, having launched the cyber insurance program with Converge as MGA and program administrator. Additional capacity from Obsidian Insurance Group, backed by a panel of reinsurers, enabled the expansion to the $1 billion revenue segment. Converge's broker materials describe QBE as A++ rated, though QBE's own ratings page lists an A.M. Best rating of A for U.S. entities.

🏪 Distribution. Converge distributes through wholesale brokers, select agents, and technology provider partnerships across all 50 U.S. states, maintaining offices in New York City and San Francisco. The company describes API products allowing brokers direct access to cyber coverage and claims-management capabilities, and the ConvergeConnect construct creates higher switching costs through embedded data-sharing integrations with technology partners.

📊 Technology and analytics. Converge operates a proprietary AI-powered platform ingesting applications, external system scans, and partner-provided telemetry to accelerate underwriting. CyberCube's Portfolio Manager, Single Point of Failure Intelligence module, and Attritional Loss Model are integrated into the underwriting ecosystem. The company achieved SOC 2 Type I compliance by December 31, 2025.

⚠️ Risk factors. Key risks include capacity dependency on QBE and Obsidian with undisclosed renewal terms, multi-state regulatory compliance obligations, systemic cyber aggregation exposure, and execution risk on the embedded services model. The CTO appointment emphasized scaling the platform to support profitability, implying it remains an active priority rather than an achieved state, and founder-linked leadership transitions highlight key-person concentration typical of early-stage MGAs.

Corvus Insurance

🏢 Corvus Insurance is a cyber insurance managing general underwriter headquartered in Boston and wholly owned by The Travelers Companies, Inc. since January 2024, when Travelers completed an approximately $435 million acquisition announced in November 2023. Founded in 2017 by Philip Edmundson, the company is incorporated in Delaware as Corvus Insurance Holdings, Inc. and operates through marketing entities Corvus Insurance Agency, LLC (U.S.) and Corvus Agency Limited (UK).

💰 Funding and valuation. Corvus raised $162 million in cumulative venture capital through May 2021 across a seed round led by Bain Capital Ventures, a Series A led by .406 Ventures, a Series B led by Telstra Ventures, a $100 million Series C led by Insight Partners (at a reported $750 million valuation), and a $15 million Series C extension from FinTLV and Aquiline Technology Growth. The Travelers acquisition price of approximately $435 million was materially below the last reported peak-round valuation.

👤 Leadership. Philip Edmundson, who previously co-founded William Gallagher Associates, served as founding CEO before transitioning to Executive Chair in August 2022, when Madhu Tadikonda was named CEO. Trade press reported in December 2025 that Tadikonda was set to depart post-integration, with no successor identified in primary disclosures. Mike Karbassi serves as Chief Underwriting Officer for cyber, and Jason Rebholz as Chief Information Security Officer.

💼 Products. Corvus writes Smart Cyber Insurance on a claims-made-and-reported basis with aggregate limits up to $10 million and insured revenue ceilings up to $5 billion, covering third-party liabilities (network security, privacy, regulatory, media, PCI) and first-party losses (business interruption, contingent BI, cyber extortion, social engineering, reputational loss, breach response). Smart Tech E&O adds Technology and Professional Services Liability and includes an intentional-shutdown trigger for first-party BI.

🔧 Distribution and underwriting. Corvus distributes through wholesale brokers and large retail producers on an E&S surplus lines basis, with quotes typically returned in under two hours and autoquote in under one minute for eligible risks. The company scans 20,000 data points per quote and offers API-based quoting through distribution partnerships. Covered industry classes span healthcare, financial institutions, manufacturing, construction, retail, education, professional services, and life sciences.

📡 Technology platform. Corvus Signal is the company's risk prevention solution comprising Risk Insights (always-on threat intelligence with same-day targeted alerts), Risk Advisory (personalized security advice), and Risk Dashboard (24/7 access to scan findings, threat alerts, and vetted vendor introductions). Corvus claims policyholders engaging with Corvus Signal over three years saw up to 20% lower frequency and cost of cyber breaches. Dynamic Loss Prevention Services and Pre-Claim Support Services (up to $1 million in breach management expenses) are embedded in the policy form.

🏦 Capacity and partnerships. All U.S. products are written on Travelers Excess and Surplus Lines paper following a full transition completed by May 2024. Corvus previously partnered with SiriusPoint and R&Q Accredited in a multi-year fronted program expanded by $100 million in July 2022, and acquired Tarian Underwriting Limited to access Lloyd's cyber capacity across the UK, US, Middle East, Canada, and Australia.

🌍 Geographic footprint. Corvus entered continental Europe in 2022 through a Travelers partnership anchored by a Frankfurt office with an initial Germany and Austria focus. Effective September 2025, Corvus Underwriting GmbH was acquired by RiskPoint Group and business transferred to RiskPoint's German branch, with Travelers continuing to provide cyber capacity, signaling a realignment of Corvus-branded underwriting in the DACH region.

📊 Financial signals and risks. Corvus disclosed a 2022 U.S. ultimate loss ratio of 36% (all lines and risk capital partner results) and 80% cyber premium growth in 2022, while Travelers referenced a $200+ million book of business at the time of acquisition. Key risk factors include single-group capacity concentration on Travelers paper, surplus lines distribution friction, systemic cyber event exposure with undisclosed aggregation limits, broad policy exclusions for war and utility infrastructure outage, and leadership transition uncertainty following the reported CEO departure.

Cowbell

🐄 Cowbell Cyber is a privately held cyber insurtech platform headquartered in Pleasanton, California, combining MGA distribution economics with selective risk-bearing through an owned domestic surplus lines insurer and a reinsurance captive. Co-founded by Jack Kudale (CEO, Chairman), Trent Cooksley (COO), and Rajeev Gupta (CPO), the company delivers adaptive cyber insurance supported by continuous underwriting, risk measurement, and bundled risk services for businesses ranging from SMEs to the middle market (up to $1B in revenue). Cowbell has raised a minimum of $208.3M across five disclosed equity financings from September 2019 through July 2024, most recently a $60M Series C led by Zurich Insurance Group.

🏢 Corporate structure. The confirmed group comprises Cowbell Cyber, Inc. (parent), Cowbell Insurance Agency LLC (US producer and surplus lines broker, licensed in all 50 states and DC), Cowbell Specialty Insurance Company (Nebraska domestic surplus lines insurer, NAIC 17372, organized July 2022, commenced business April 2023), Cowbell Reinsurance Company (Vermont captive), Cowbell Managing General Agency Ltd (UK, Companies House 14570024), and Cowbell Insurance Solutions Pty Ltd (Australia, corporate authorized representative under AUB Group Limited). Cowbell Specialty is licensed as a foreign surplus lines insurer in 46 states plus DC.

💰 Funding trajectory. The financing progression advanced from a $3.3M seed led by ManchesterStory Group (September 2019) through a $20M Series A (Brewer Lane Ventures, March 2021), a $100M Series B (Anthemis Group, March 2022), a $25M equity financing (Prosperity7 Ventures, November 2023), and a $60M Series C (Zurich Insurance Group, July 2024). The investor base spans insurance-focused investors (ManchesterStory, Holmes Murphy, Markel), institutional fintech and venture firms (Anthemis, Permira, PruVen Capital, NYCA Partners, Viola FinTech), and a strategic insurer investor (Zurich). The November 2023 release referenced $148M raised to date, exceeding the $123.3M reconstructible from prior rounds, indicating possible undisclosed interim financings.

🔧 Business model. Cowbell operates as a hybrid cyber insurtech platform with three risk-bearing layers: carrier paper relationships for admitted and E&S products (Palomar, Chaucer, Obsidian), captive risk participation through Cowbell Re, and owned surplus lines capacity via Cowbell Specialty Insurance Company. The distribution network exceeds 14,000 producers and emphasizes broker-first, API-enabled, and digital channels with rapid quote/bind (under five minutes). Product architecture defines clear segment boundaries from SME admitted cyber through middle market non-admitted cyber to excess and specialty lines.

📋 Product suite. Prime 100 provides admitted standalone cyber for businesses up to $100M in revenue, while Prime 100 Pro adds enhanced endorsements (cryptojacking, contingent business interruption, reverse social engineering) with limits up to $3M. Prime 250 targets middle market risks ($100M to $1B revenue) on a non-admitted basis with tailored coverages including construction-specific and manufacturing-specific endorsements. Prime Plus offers excess cyber (follow-form, limits up to $5M), Prime Tech combines Technology E&O and cyber (limits up to $5M), and management liability is available via the Zurich Select Plus collaboration targeting private companies under 250 employees.

🤖 Technology and risk services. The platform is built around continuous underwriting using proprietary Cowbell Factors to benchmark businesses against a large data set. Cowbell Co-Pilot applies generative AI and large language models to accelerate contract review (claimed 40 percent faster on average), and integrations include AWS Security Hub configuration-based quoting and Qualys vulnerability management. Cowbell 365 delivers 24/7 pre- and post-incident claims and risk engineering support, while the Cowbell Rx marketplace offers policyholders third-party cybersecurity partner access with discounts up to 60 percent, including Sophos MDR.

🤝 Capacity and partnerships. Core admitted products are written on Palomar Specialty Insurance Company paper (AM Best A (Excellent)), Prime 250 adds Chaucer Insurance Company (AM Best A (Excellent)), and Prime Tech is delivered through Obsidian Insurance Company (AM Best A-). Cowbell maintains a diversified panel of over 20 global reinsurance partners, and the combined Cowbell Specialty and Cowbell Re structure provides additional flexibility. The Zurich relationship spans equity, governance (board seat via Stephen Moss), management liability product collaboration (Zurich Select Plus), and Australian capacity (Prime One on Zurich Australian Insurance Limited paper, multi-year fully delegated exclusive collaboration, limits up to A$5M).

📊 Financial signals. Cowbell reported a premium run-rate exceeding $200M in 2021 and 2.5x premium growth in 2022, though audited annual GWP has not been published. The company disclosed a 43 percent ultimate loss ratio for 2022 and a reported claims ratio under 3 percent since inception, with ransom payments necessary in fewer than 25 percent of ransom-related claims. Cowbell Specialty Insurance Company has $19M in statutory paid-in capital and estimated $10M in net premiums written for 2024, consistent with a model where most platform premium is written on partner carrier paper.

⚡ Risk factors. Key risks include capacity and counterparty dependency on specific carrier paper providers (Palomar, Chaucer, Obsidian), surplus lines regulatory process variability, aggregation and systemic cyber event exposure, claims vendor concentration during widespread incident waves, and execution risk in UK and Australian expansion. Product expansion into Tech E&O and management liability introduces longer-tail casualty and professional liability dynamics distinct from cyber loss patterns, requiring separate underwriting and reinsurance validation.

Dattak

🏢 Dattak is a French cyber-focused insurtech wholesale broker (Société par Actions Simplifiée, SIREN 907 857 817) founded on 1 December 2021 and registered with the Paris trade and companies register. Headquartered at 65 Boulevard Lannes, 75016 Paris, the company holds ORIAS registration No. 22002872 as a courtier grossiste in commercial property and casualty insurance under the supervision of the Autorité de Contrôle Prudentiel et de Résolution (ACPR). A subsidiary, Dattak Technologies (incorporated 2025), houses the CERT-DATTAK incident response function.

👩‍💼 Leadership. Co-founded by Charlotte Couallier (CEO, Télécom Paris graduate, former AXA France partnerships director), Damien Damamme (CTO, formerly Allianz lab distribution), and Benoît Grouchko (serial entrepreneur, founder of Teemo sold to Near in 2020), Dattak's leadership includes Alexia Morot as Head of Cyber Insurance and board-level participation from Matthieu Bébéar (ex-AXA Chief Business Officer) and Alexis du Peloux. Augustin Brunelle leads the BeLux geographic expansion effort.

💰 Funding. Dattak raised a cumulative €18M in venture capital: a €7M seed round in June 2022 led by XAnge with business angels including Bébéar, followed by an €11M Series A in August 2023 with XAnge, Breega, and Bpifrance. The investor base combines early-stage venture and state-backed capital with no disclosed insurer corporate venture fund participation.

🔄 Business model. Dattak operates as a cyber-focused intermediary combining delegated placement through a broker network with bundled cybersecurity services and incident response. Distribution is exclusively broker-mediated via an online platform enabling quoting in approximately one minute through a fully digital process. The firm's client segmentation has expanded from micro and small enterprises at launch to companies with up to €2bn in revenue, with per-risk capacity growing from €2M to €5M per company.

🛡️ Cyber insurance. The core cyber product covers malicious intrusion, human error, ransomware (payment positioned as last resort), business interruption, IT outages including provider failures, social engineering fraud, bricking, data restoration, personal data breach notification, and payment card losses. Third-party coverages include cyber and media liability with defense costs and regulatory investigation and PCI DSS breach coverage. The contract was explicitly expanded to address major IT outages and provider failures even absent a malicious attack.

🔍 Cybersecurity services. Dattak Défense is a proprietary prevention platform marketed as exclusive to insureds, providing continuous attack surface scanning (Scan Cyber), advanced cybersecurity audits, phishing simulation, and penetration testing. An MDR bundle combining EDR with a managed SOC claims average premium reductions of 30 percent and simplified eligibility. The CERT RFC 2350 document describes services including incident forensics, crisis management, vulnerability scanning, Active Directory and cloud configuration assessments, and cybersecurity training.

🏛️ Capacity and partnerships. The carrier and reinsurer panel comprises Wakam (initial partner), Sompo, SCOR, Hannover Re, Chaucer, Hamilton, and Envelop Risk. Dattak partnered with the Direction générale de l'armement to integrate the DGA cyber maturity framework for the Defense Industrial and Technological Base, impacting an estimated 4,000 French SMEs. Product expansion beyond cyber includes a combined Cyber + RC Pro contract with mutualized ceilings up to €10M for RC Pro and €5M for cyber, simplified underwriting up to €50M revenue, and an optional USA/Canada extension.

📊 Scale indicators. Dattak reported €10M in premiums placed in 2024 (company-reported) with a €22M target by end-2025, approximately 1,000 policyholders as of August 2023 (up from 600+ in June 2023), and 25 employees at the Series A stage. Per-risk capacity reached €5M per company by February 2024. Loss ratio, revenue, net income, and MGA commission rate are not publicly disclosed.

⚠️ Risk factors. Capacity dependency and renewal risk are central given the delegated-authority business model, with binding authority terms and performance triggers not publicly disclosed. Expansion into larger-company segments and IT outage coverage increases systemic correlation risk, while ransomware payment coverage lacks disclosed governance controls and sanctions screening mechanisms. Geographic expansion to Belgium and Luxembourg introduces cross-border execution risk, and the move into professional liability changes claim patterns and tail risk profiles.

🚀 Strategic trajectory. Dattak's stated ambition is to build a European leadership position combining cyber insurance with cybersecurity tooling, scaling through broker distribution with embedded digital services. The roadmap encompasses further expansion into larger client segments, geographic reach across the EEA, and product diversification into professional liability and financial lines for the tech and services sector.

Elpha Secure

🔐 Elpha Secure is a Delaware-incorporated cyber insurtech MGA founded in 2018 that combines proprietary endpoint security software with surplus lines cyber insurance for U.S. small and midsize businesses with revenue up to $100 million. The operating entity, Elpha Secure Technology, Inc. (CIK 0001850887), is headquartered at 580 Fifth Avenue, New York, and operates across all 50 U.S. states through wholesale broker distribution. The company is financially backed by AXIS Surplus Insurance Company and Everest Indemnity Insurance Company under a multi-carrier program structure.

💰 Funding. Cumulative disclosed funding exceeds $29 million, comprising more than $9 million in seed funding and a $20 million Series A completed in October 2022 led by Canapi Ventures. Co-investors include Stone Point Ventures, AXIS Capital, State Farm Ventures, The Hartford STAG Ventures, Fermat Capital Management, and EOS Venture Partners. Valuation and profitability metrics have not been publicly disclosed.

🛡️ Product design. The insurance product is marketed as a cyber insurance policy starting at $1,000, with economic enhancements tied to adoption of the Elphaware security suite — including a $500 extortion loss retention, a 6-hour business interruption waiting period, and a 365-day period of restoration. First-party coverages include business interruption, ransomware, and incident response expenses; third-party coverages include network security and privacy liability, regulatory fines, and PCI coverage.

🖥️ Security technology. Elpha's seven-component security agent provides real-time EDR-like threat monitoring, remote access protection with MFA, SOC-driven patch outreach, ES Mail email security for phishing and financial fraud detection, vulnerability management, dark web monitoring, and exposed credential monitoring. Pre-bind capabilities include a deep scanning tool for external network and cloud assets. The software is third-party audited by Security Compass Advisory with VB100 testing as an additional validation mechanism.

🤝 AXIS relationship. AXIS commenced its strategic partnership with Elpha in March 2021, becoming both an investor and a capacity provider. By July 2024, AXIS expanded the relationship to direct certain standalone SME cyber submissions for risks with revenue up to $100 million to Elpha's platform via wholesale brokers. This institutional commitment positions Elpha as a scalable distribution and servicing mechanism for a segment of AXIS's SME cyber portfolio.

🔗 Technology partnerships. Elpha launched its insurance offering on Socotra's cloud-native platform with implementation in less than two months. A CyberCube analytics partnership provides Portfolio Manager and Single Point of Failure Intelligence for accumulation risk management. The October 2025 SentinelOne partnership integrates Elpha's insurance offering with SentinelOne's endpoint security platform for SMB customers, signaling a strategy of layering mainstream security alongside proprietary controls.

🎯 Competitive positioning. Elpha fits the embedded cyber defense plus insurance cluster alongside peers At-Bay, Coalition, and Cowbell, which also market insurance enhancements linked to security adoption. Elpha's differentiation rests on explicit AXIS program relationships routing SME submissions, security product breadth centered on endpoint-installed capabilities and SOC outreach, and the bundled insurance-plus-software economic model. Larger peers operate at significantly greater disclosed scale, increasing their investment capacity in threat intelligence and incident response.

⚠️ Risk factors. Capacity dependency on a limited set of carriers (AXIS Surplus and Everest entities) creates fragility if appetite changes or performance triggers are invoked, compounded by AXIS's dual investor-capacity role. Cyber accumulation remains the existential risk of the class, and the bundled security model requires consistent deployment and SOC support to realize loss benefits. Claims reimbursement gating through approved providers may create policyholder friction, and surplus lines distribution demands compliance across many jurisdictions.

📈 Strategic trajectory. Elpha broadened its underwriting appetite in February 2023 to cover revenues up to $100 million across transportation, entertainment, life sciences, and education sectors. The AXIS partnership expansion in mid-2024 and the SentinelOne partnership in late 2025 signal continued distribution scaling and security capability layering. A February 2026 newsroom headline indicates the ES Mail launch and cybercrime limit expansion to $500,000, reflecting product-market broadening across both insurance and security dimensions.

Emergence Insurance

🛡️ Emergence Insurance is a Sydney-headquartered cyber insurance managing general agency and Lloyd's coverholder operating in Australia and New Zealand. Founded in March 2015, the company was launched with strategic investment from Steadfast Group Limited and Hollard Insurance, with Troy Filipcevic and Chris Stallard serving as co-founders. It operates under binding authority from Lloyd's underwriters led by Markel Syndicate 3000, issuing policies as agent for the underwriters.

🏛️ Corporate structure. The Emergence Insurance Group Pty Limited group comprises three entities, with two functioning as MGAs and Lloyd's coverholders in Australia and New Zealand respectively. Steadfast disclosed an equity-accounted associate position with ownership rising from 25.00% in FY2015 to 33.33% in FY2016. The Australian entity holds AFSL 329634, and the New Zealand entity is registered as FSP 1005174.

👥 Leadership. Troy Filipcevic serves as Founder and CEO, having previously been Executive Manager of Strategy at Suncorp Group and a consultant at Deloitte. The executive team includes Colin Pausey as COO, Jeff Gonlin as Chief Underwriting Officer, Blake Baxter as Head of Claims and Incident Response, and Nikil Deo as Head of Technology. The team roster also indicates internal actuarial capability and security operations functions.

📦 SME product. Cyber Event Protection (CEP-005.1) offers policy limits of $250,000 to $10 million with worldwide territorial limits, 100% Lloyd's security, and an Australia-based 24/7/365 incident response service. Coverage spans four sections: losses to the insured's business (including preventative shutdown and system failure), liability protection, cyber event response costs, and optional covers for non-IT contingent business interruption and criminal financial loss. Waiting periods apply at 8 hours for business interruption and 48 hours for system failure, with indemnity periods ranging from 30 to 365 days.

🏗️ Enterprise product. Cyber Enterprise Solution (CES-003) explicitly targets businesses with more than $250 million in revenue across a broad range of industries. It covers first-party and third-party costs through three principal modules: business interruption, cyber event response costs, and cyber and privacy liability. Extensions and optional covers include reputational harm, system failure, dependent business system failure, multimedia liability, tangible property, and joint venture and consortium arrangements.

⚙️ Policy mechanics. Both products employ a hybrid trigger structure: discovery-and-notification for first-party elements and claims-made-and-reported for third-party liability. The embedded incident response service does not erode the policy aggregate and carries no excess. War and cyber operation exclusions apply across both products, incorporating an impacted state construct with a carve-back for systems not physically located in the impacted state.

🖥️ Cybersecurity services. CEP-005.1 policyholders receive at no extra cost a vCISO Trusted Advisor, real-time cyber threat notifications, dark web monitoring, and an incident response plan template. The policy wording describes ongoing scanning of internet-facing infrastructure to determine vulnerabilities. For CES-003, Emergence partners with its sister company cyberSuite to deliver complimentary and heavily discounted pre-loss services to enterprise policyholders.

📬 Distribution and geography. Policies are available exclusively through insurance brokers, with a default commission of 15% and a selectable range of 0% to 25%. Emergence operates in Australia (Sydney head office) and New Zealand (Auckland contact address), with original launch ambitions encompassing South Africa and Asia as well. Company documentation references the Lloyd's credit rating of AA- from S&P as the underlying policy security.

🧭 Strategy and risk. The strategic trajectory has expanded from SME-first positioning in 2015 to an explicit enterprise offering, while maintaining packaged SME propositions supported by enhanced claims and incident response operations. Key risk factors include capacity dependency on Lloyd's delegated authority renewals, systemic cyber aggregation exposure, and operational execution risk in embedded cybersecurity services. The firm's in-house underwriting, claims, incident response, and technology functions are consistent with a scaled specialty MGA design.

Evolve MGA

🏢 Evolve MGA is a California-incorporated managing general agent specializing in cyber liability and technology E&O for SMEs with cyber risk exposures up to $250 million, distributing through over 3,000 retail broking partners across all 50 U.S. states. Founded in 2015 by brothers Michael and Patrick Costello — described as fourth-generation insurance professionals — the firm was acquired by Nexus Underwriting in July 2023 and subsequently became part of Brown & Brown, Inc. through the Kentro Capital acquisition completed in October 2023. The operating legal entity is Evolve Cyber Insurance Services LLC, incorporated in California.

📊 Scale and financials. At the time of acquisition, Evolve reported approximately 6,000 policyholders and over 3,000 retail broking partners. A 2020 trade profile references a team of roughly 30 cyber specialists. No venture funding rounds were identified; the sole disclosed capital event is the Nexus acquisition, whose financial terms were not published. Statutory financial statements and GWP figures are not publicly available.

🛡️ Coverage architecture. The post-acquisition Evolved NexGen cyber policy, supported by Lloyd's of London, covers first-party breach response costs, cybercrime and social engineering, business interruption with a six-hour waiting period, reputational loss over 12 months, and hardware replacement. Third-party insuring clauses include network security liability, privacy liability, regulatory penalties, PCI liability, and media liability. The historical EVO4.0 specimen shows claims-made structural features including an unlimited retroactive date and an optional extended reporting period.

💳 Cybercrime sublimits. The EVO4.0 specimen provides granular sublimits including funds transfer fraud at $250,000, theft of funds held in escrow at $250,000, extortion at $3,000,000, corporate identity theft at $250,000, telephone hacking at $250,000, and push payment fraud at $50,000. The current product page emphasizes social engineering, invoice manipulation, impersonation fraud, and electronic theft of third-party funds as key covered perils.

🏦 Capacity and panel. The current NexGen policy is marketed as Lloyd's-supported across all 50 states. The 2021 EVO4.0 specimen evidences a co-insurance panel spanning Lloyd's syndicates with percentage participations alongside non-Lloyd's insurers Zurich Insurance plc, HDI Global Specialty SE, XL Catlin Insurance Company UK Limited (now AXA XL), and Fidelis Underwriting Limited. CFC Underwriting Limited served as coverholder and cyber incident manager under a Lloyd's delegated authority binding agreement.

📱 Insurtech services. Evolve supplements underwriting with a proprietary mobile app offering 24/7 dark web monitoring, network deep scanning, phishing simulation campaigns, and instant claims notification. A Data Breach Calculator built on NetDiligence/eRiskHub infrastructure supports risk education. Vendor partnerships with Upfort, Avail, BlackFog, ControlCase, eSentire, and Coro form a curated cybersecurity marketplace for policyholders.

🌐 Distribution model. Evolve operates a direct-to-retail broker model, with its production team historically active in agency education through training, marketing materials, and in-person seminars. The Florida Association of Insurance Agents partnered with Evolve to distribute the EVO 3.0 policy to its membership. The company's licensing approach combines a California insurance license with surplus-lines placements and Lloyd's delegated authority via CFC as coverholder.

🏁 Competitive position. Evolve's differentiators center on coverage breadth — including unlimited reinstatement on first-party coverage, breach response costs outside the limit, and full prior acts — rather than the proprietary security telemetry emphasized by full-stack competitors such as Coalition and At-Bay. Cowbell Cyber and Corvus Insurance emphasize analytics-driven underwriting, while Evolve's strengths lean toward broker education, claims ecosystem design, and cybercrime coverage depth. The historical CFC relationship positions Evolve structurally close to CFC's delegated-authority-plus-managed-response archetype.

⚠️ Risk factors. Key risks include Lloyd's capacity concentration and potential appetite shifts, operational dependency on third-party claims and vendor ecosystems, systemic cyber aggregation exposure from a large SME portfolio, and key-person continuity risk following co-founder Patrick Costello's departure in late 2025. Multi-state licensing confirmation and administrative action history were not located in accessible regulator registers.

🧩 Strategic outlook. The Nexus acquisition and Kentro integration into Brown & Brown signal a platform strategy aimed at consolidated specialty underwriting and cross-geographic distribution leverage. Core pillars include defending retail broker scale, maintaining product differentiation through broad cybercrime coverage and claims response capabilities, and extending value through curated cybersecurity services and policyholder tooling. The three-time Cyber MGA of the Year distinction at the Advisen/Zywave awards underscores market recognition within the U.S. SME cyber segment.

Eye Security

🔒 Eye Security is a Netherlands-based integrated cyber risk platform, founded in 2020, that bundles managed cybersecurity operations and incident response with delegated-authority cyber insurance. The company is headquartered in The Hague and operates through a group structure comprising Eye Security B.V. (operating company), Eye Underwriting B.V. (authorized agent), and Eye Insure B.V. (intermediary). Founders Job Kuijpers (CEO), Piet Kerkhofs (CTO), and Vincent van de Ven (COO) bring backgrounds from the Dutch General Intelligence and Security Service (AIVD) and Military Intelligence and Security Service (MIVD).

🏢 Regulatory framework. Eye Underwriting holds AFM authorization as a (sub-)authorized agent for business non-life insurance since 03 May 2022. The AFM register lists outgoing European passports into Belgium, Germany, France, Luxembourg, Austria, and Ireland, enabling cross-border cyber insurance distribution. Eye Security itself is not a licensed insurance carrier; all insurance activity operates through the authorized agent and intermediary entities.

🖥️ Product suite. The Managed XDR offering delivers a 24/7 Security Operations Center with continuous endpoint and cloud monitoring, integrated incident response, Attack Surface Management, the Eye Portal for security metrics visibility, and the Eye Anti-Spoofing Tool (EAST). The company describes a best-of-breed technology integration approach with partners including Microsoft, CrowdStrike, and Google.

📑 Insurance product. Cyber insurance is offered only in combination with the security solution, targeting organizations with annual revenue up to EUR 250 million across two intake bands (sub-EUR 50 million and EUR 50–250 million). Policy wordings include both a CyberClear by Hiscox configuration and an Eye Underwriting branded form, covering first-party losses (breach response, cyber extortion, data restoration, business interruption, reputation protection) and third-party liabilities (privacy, GDPR investigations, PCI, network security).

🔐 Underwriting controls. Application forms embed cyber hygiene gating including MFA requirements, backup immutability and encryption, patching responsiveness expectations, and segregation of end-of-life systems. The sub-EUR 50 million form requires commitment to act on critical patches within two working days. Insured sums range from EUR 100,000 to EUR 5,000,000 depending on the revenue band.

🏦 Capacity providers. The AFM register lists four carrier principals: Hiscox S.A. (from May 2022), Lloyd's Insurance Company S.A. (from February 2023), Chubb European Group SE (from December 2023), and Markel Insurance SE (from June 2024). This multi-carrier set reduces single-carrier dependency, although relative capacity shares by carrier are not publicly disclosed.

💰 Funding history. Eye Security has raised EUR 57.5 million across three rounds: a EUR 4.5 million seed from TIN Capital in early 2022, a EUR 17 million Series A led by Bessemer Venture Partners in November 2022, and a EUR 36 million Series B led by J.P. Morgan Growth Equity Partners in March 2024. Headcount expanded from over 70 employees in late 2022 to over 100 professionals by March 2024.

🤝 Distribution and partnerships. Insurance is sold via an advised broker channel rather than direct-to-business. Named partners include Wilink (strategic partnership, June 2023), Protection Unit (exclusive partnership for Belgium, France, and Luxembourg, April 2023), and Aon Belgium (referenced in the 2022 insurance launch). The company also operates partner programs for brokers, risk advisors, and managed service providers.

📊 Scale and market presence. Eye Security serves 650+ customers with 60 partners and five offices as of June 2025, protecting over 110,000 endpoints. Operating locations include The Hague (Netherlands), Duisburg (Germany), and Oostkamp (Belgium). Customer verticals span logistics, manufacturing, healthcare, financial services, and professional services, with named references including Jan de Rijk Logistics and Van der Most Transport.

Invision Cyber

🛡️ Invision Cyber is a cyber insurance MGA and Lloyd's coverholder operating as a trading style of Acies Management Holdings Limited, an FCA-authorized private limited company registered in the United Kingdom with offices in London. The underlying legal entity was incorporated on 8 January 2018 under Companies House company number 11136744, with the Invision Cyber brand launched publicly on 15 September 2025.

🏗️ Corporate structure. Acies Management Holdings Limited is controlled by Vector Investment Capital (Holdings) Limited, which holds 75% or more of shares, voting rights, and board appointment rights. Vector Investment Capital was previously named Meridian Group Holdings Limited until 15 October 2024. The parent group, Acies MGU, secured a qualitative "significant long-term" minority investment from Correlation Holdings Limited, described as a large family office, though no quantitative terms were disclosed.

🔬 Technology partnership. The central strategic relationship is with Trend Micro Incorporated, enabling underwriting from telemetry "from the inside out" through proprietary algorithms applied to data from Trend Micro's Vision One XDR and Cyber Risk Exposure Management platform. Eligibility requires active deployment of Trend Vision One endpoint security/XDR and CREM, along with MFA for remote access, an incident response plan, protected backups, and security monitoring. The company states it operates independently with no formal affiliation or financial relationship with Trend Micro.

📄 Coverage offering. The Invision Insight Policy lists typical coverages across first-party (business interruption, cyber extortion, digital asset restoration, bricking, reputation management), third-party liability (network security liability, regulatory defense and penalties, media liability, PCI fines, contingent bodily injury), and cyber crime categories (funds transfer fraud, invoice manipulation, cryptojacking). Breach response elements include forensic investigations, system recovery, legal costs, credit monitoring, and PR/crisis management, positioned as built into the policy.

👤 Leadership. The MGA was co-founded by Stuart Essex, Managing Director and described as a London and Lloyd's market veteran with prior experience as Head of UK Professional Indemnity at AXA XL, and James Ingram, CTO and Senior Underwriter described as a cyber expert. Mark Heath serves as CEO of the parent group Acies MGU. A LinkedIn company profile lists 51 to 200 employees as a self-reported range.

🏛️ Capacity and distribution. Invision publicly names Beazley, Munich Re, and Antares as its three Lloyd's syndicate capacity partners. Distribution is designed around Trend Micro customer eligibility with primary broker support from Woodruff Sawyer, and access is available only through appointed brokers with limited exceptions. The offering targets US customers, with business sourced through US E&S brokers and executed from the United Kingdom under a Lloyd's delegated authority structure.

🏥 Claims operations. The incident response protocol identifies a US panel comprising DFIR partners (Trend Micro, S-RM, N1 Discovery), recovery partners (Fenix24, Beazley Security), and privacy counsel (Wilson Elser, Buchanan Ingersoll & Rooney). Incidents are triaged through cyber services managers at Beazley, with a hotline and always-on email monitoring referencing a volume of approximately 4,000 calls per year. Alternative vendors may be accommodated subject to due diligence and prior written approval.

⚡ Competitive positioning. Relative to cyber insurtech peers such as Coalition, At-Bay, Cowbell, Resilience, and BOXX Insurance, Invision Cyber differentiates through hard coupling to a single cybersecurity ecosystem and disclosed underwriting reliance on telemetry rather than vendor-agnostic scanning. This positions it as an embedded cyber insurance construct within a security OEM's installed base, resembling an affinity distribution strategy where the cybersecurity vendor's customer base is the addressable market and the broker layer is narrowed to a primary specialist partner.

⚠️ Risk factors. Key risks include capacity dependency on three named Lloyd's syndicate partners creating concentrated counterparty and renewal risk, single-ecosystem distribution concentration tied to Trend Micro's installed base, and potential portfolio correlation if a systemic vulnerability affects shared technology stacks. The cross-border delegated authority structure faces evolving regulatory expectations, and public materials identify limited depth of bench in underwriting and claims leadership, increasing key-person dependency in early-stage operations.

Measured Analytics and Insurance

🛡️ Measured Analytics and Insurance is a Delaware-incorporated cyber insurance managing general agent founded in 2018 and headquartered in Salt Lake City, Utah. The company operates under a delegated authority model, underwriting through capacity partners rather than an owned balance sheet, and distributes via exclusively licensed wholesale broker networks. Measured Insurance Agency, LLC holds a New York Department of Financial Services excess line broker listing under identifier 1701465, with a registered address at 250 East 200 South, Suite 1600, Salt Lake City, UT 84111.

🎯 Target market. CyberGuard materials target organizations with revenues under $500 million, spanning the upper-SME to mid-market spectrum. Product positioning includes primary and excess capability with limits of $500,000 to $5,000,000. All classes are considered, though an unfavorable appetite exists for crypto-exposed businesses, public administration, education, gambling, managed service providers, payment processors, social networks, and title agencies.

📋 CyberGuard 2023 coverage. The product provides first-party coverages including breach investigation costs, cyber extortion with no coinsurance, data and system restoration including bricking, business interruption including system failure and contingent business interruption, reputational harm, crisis communication, cryptojacking, and cybercrime. Third-party coverages include privacy and cybersecurity liability, digital media liability, regulatory liability, and PCI liability. Full limits apply to all insuring clauses except cybercrime (capped at $300,000) and contingent system failure (capped at 50% of aggregate).

⚖️ War and terrorism. The policy includes affirmative terrorism coverage and non-attribution-based war language, indicating a war exclusion framing that is not purely attribution-dependent. Claims handling and breach response are provided by Canopius, and all insureds receive virtual CISO consultancy and active threat monitoring as embedded services.

🏦 Capacity and distribution. Canopius (rated A- Excellent by AM Best) joined SCOR as a long-standing capacity provider to expand cyber insurance solutions for SMBs in the United States. Distribution operates through wholesale broker channels plus an AWS cloud ecosystem route, where Measured runs a quoting solution driven by AWS Security Hub posture assessments. The company achieved the AWS Cyber Insurance Competency in November 2023.

🤝 Technology partnerships. Strategic alliances integrate security telemetry with insurance pricing: Sophos offers premium reductions of up to 25% for MDR/endpoint customers, SecurityScorecard links security ratings to premium incentives, KnowBe4 provides discounted training and premium credits for strong human risk practices, and Tenable contributes vulnerability data. These partnerships create a data-integrated underwriting model that blends risk selection with active mitigation.

👤 Leadership. CEO and founder Jack Vines previously worked at Verisk, where he identified gaps in real-time security posture monitoring for cyber insurance. Vince McCarthy serves as President, Steven Anderson as Chief Underwriting Officer, Nick Little as Head of Insurance, and Zach Atya as Director of Insurance.

💰 Funding. The company closed a second round of funding in September 2021, led by Signal Peak Ventures and joined by Origin Ventures, Royal Street Ventures, Silicon Valley Data Capital, and AV8 Ventures. The amount raised was not publicly stated. Capacity-partnership communications reference a profitable growth positioning, but no GWP, loss ratio, revenue, or headcount metrics have been disclosed.

⚠️ Risk factors. Key structural risks include capacity dependency on Canopius and SCOR, cyber aggregation exposure through business interruption and contingent coverages, operational execution risk tied to continuous monitoring and data pipeline reliability, multi-state regulatory compliance obligations, and go-to-market concentration across broker and ecosystem partner channels. Observable strategic pillars center on analytics-driven underwriting, security-telemetry partnerships, bundled risk mitigation services, and scalable capacity arrangements.

Onda

🌐 Onda is a multi-jurisdictional cyber MGA platform founded in 2022, providing broker-facing cyber insurance across the United Kingdom, France, and the United States. The company operates through distinct regional distribution entities supported by a separate U.S. technology entity, Onda AI, Inc., and holds Lloyd's coverholder status in Europe while using carrier paper from Crum & Forster Specialty Insurance Company in the United States. As of December 2023, Onda reported a headcount of 32 employees.

🏢 Entity structure. The operating entity map includes Onda Insurance Services, Inc. (Maryland-domiciled U.S. licensed producer and surplus lines broker, NPN 21439548), Onda SAS (Paris-headquartered France distributor, ORIAS 22005524, ACPR-supervised), CKRe Limited (FCA-authorized UK distribution partner, FRN 308735, Companies registration 03600683), and Onda AI, Inc. (Delaware-registered technology developer, Registered File 6827922). This multi-entity architecture enables jurisdictional compliance while centralizing technology and analytics through a single platform.

👤 Leadership team. Alex Jomaa serves as Chief Underwriting Officer with prior senior cyber underwriting experience at Tokio Marine Kiln and Insurance Insider cyber rankings recognition, while Patrick Cannon serves as Chief Claims Officer with prior Head of Cyber Claims experience at Tokio Marine Kiln and claims leadership at Marsh. Gillian Harvey leads compliance as Group Head of Compliance with experience spanning Chubb, CFC Underwriting, HDI Global Specialty, and AmTrust Europe, and Kate Schulze serves as Head of Legal with prior experience at the U.S. Department of Justice and the SEC.

💼 Product architecture. Onda markets two primary cyber products: Onda + targeting SMEs and lower mid-market businesses with annual revenue up to £100 million (UK) and limits up to £5 million, and Onda X targeting mid-market businesses with annual revenue from £100 million to £1 billion with aggregate limits up to £5 million for primary or excess placements. In the United States, Onda X covers businesses with annual revenues between $50 million and $1 billion. Evidenced coverage elements include ransomware and cyber extortion with negotiation and payment facilitation, social engineering, system business interruption, data breaches, and reputational harm cover.

🏗️ Capacity providers. European underwriting capacity operates through Lloyd's, with Everest underwriting the Onda X mid-market product and Canopius Group providing renewed SME capacity in the UK and France. In the United States, Crum & Forster Specialty Insurance Company (NAIC 44520), a non-admitted surplus lines insurer domiciled in Delaware, serves as the issuing carrier. Onda explicitly notes the surplus lines status and the absence of guaranty-fund protection for U.S. policyholders.

🖥️ Technology platform. Navigator is Onda's proprietary cyber risk and insurability management platform, offering multi-dimensional risk assessments, continuous monitoring, live threat intelligence, and supply-chain oversight, with detection and auto-alert functionality built into every policy. The Threat Lab consulting service, available exclusively to European clients, is built using proprietary threat analytics and internal telemetry monitoring systems developed by Onda AI, Inc., supplemented by monthly reports and analyst briefings.

🤝 Strategic partnerships. Onda announced a two-year partnership with Panorays in October 2024 to integrate real-time cyber risk assessment, enabling a cyber risk engine combining internal network data, external attack surface data, and threat intelligence to reduce dependency on lengthy application forms. In November 2024, Five Sigma announced that Onda selected its Clive claims management platform to support multi-currency, configurable workflows for international scaling. Onda's UK complaints procedure routing to Lloyd's Insurance Company S.A. in Brussels indicates Lloyd's Europe's structural role in European program governance.

⚠️ Risk factors. Key risks include capacity dependency given reliance on Everest, Canopius, and Crum & Forster; regulatory complexity spanning three jurisdictions with distinct supervisory frameworks; aggregation and correlation risk intrinsic to cyber portfolios serving mid-market insureds with interconnected ecosystems; and operational dependency on third-party technology integrations including Panorays and Five Sigma. Key-person concentration risk is elevated given the prominent role of underwriting and claims leadership in broker confidence without disclosed broader governance depth.

🧭 Strategy and milestones. Onda's strategy emphasizes simplifying cyber placement via technology, replacing lengthy forms with real-time risk data, and providing continuous risk insights alongside insurance protection, with three execution priorities: broadening mid-market relevance through Onda X, strengthening risk signal quality via telemetry and third-party integrations, and industrializing claims operations through platform automation. Key milestones include the October 2023 UK launch, the February 2024 London market entry as a Lloyd's-backed MGA, the March 2025 Onda X mid-market product launch underwritten by Everest, and the October 2025 U.S. launch with Crum & Forster backing.

Pera

🛡️ Pera is a cyber-focused managing general agent launched in October 2023 as the first program of Desq Insurance Services, the MGA accelerator and incubator platform of USQRisk. Pera underwrites excess cyber and blended cyber/technology errors and omissions for large U.S.-domiciled corporate risks, operating under a delegated authority model with capacity from Chaucer Group. The program targets insureds generally exceeding $1 billion in annual revenue and emphasizes entities with mature cybersecurity controls.

🏢 Legal structure. Pera operates as a division of Desq Insurance Services, LLC, a Delaware-formed limited liability company registered as a foreign LLC in Florida. No separate "Pera" corporate entity was identified in reviewed records; the regulated wrapper for filings and licensing purposes is Desq Insurance Services, LLC. Desq states it is a subsidiary of USQRisk, and the group maintains surplus lines registrations across multiple U.S. states including Texas, Massachusetts, and Louisiana.

👤 Key personnel. Jeffrey Batt serves as Pera's Chief Underwriting Officer and Head of Cyber, bringing experience from the U.S. Department of Defense, AmTrust Financial Services, Trium Cyber, and Marsh, along with a JD from Georgetown University Law Center. Sam Kramer was announced as CEO of Desq in October 2024. Group-level leadership includes Anibal Moreno as CEO of USQRisk, Michael Zipper as President, Parag Bavishi as Chief Underwriting Officer, and Christopher Giuffre as Chief Strategy Officer.

🎯 Underwriting focus. Pera's sole disclosed product is "XS Cyber," covering excess cyber and technology errors and omissions for large corporates. The program is open to most industry classes and prioritizes insureds with a strong security posture. Pera is described as developing products for the U.S. market, with no evidence of non-U.S. underwriting authority.

📄 Capacity and ratings. Chaucer Group is the sole named capacity provider, with launch communications describing $10 million in initial capacity. Chaucer is a member of China Reinsurance (Group) Corporation, rated "A (Excellent)" by A.M. Best and "A (Strong)" by S&P Global Ratings. Chaucer's Irish subsidiary, Chaucer Insurance Company DAC, received an S&P upgrade to "A" from "A−" in 2021.

💰 Funding and capital. No Pera-specific equity funding rounds were identified in public sources. At the group level, USQRisk received $3.25 million of seed capital from Maiden Holdings in 2020, with Maiden executives subsequently serving on USQRisk's board of managers. Pera launched with insurance capacity rather than publicly disclosed equity financing.

🤝 Ryan Specialty acquisition. Ryan Specialty signed a definitive agreement in April 2025 and completed the acquisition of certain assets of USQRisk Holdings in May 2025. The transaction brought approximately $11 million of incremental operating revenue on an unaudited basis for the twelve months ended December 31, 2024. This acquisition implies a shift from a standalone incubator model to integration within Ryan Specialty's alternative risk business segment.

📈 Financial signals. Pera-specific financial metrics are not publicly available. At the USQRisk group level, cumulative gross premium written was reported as moving above $850 million since inception, with expectations to exceed $1 billion cumulatively. Ryan Specialty's acquisition disclosure of approximately $11 million in incremental operating revenue is the only quantified performance signal at the group level.

⚠️ Risk factors and outlook. Key risks include single-capacity-provider concentration with Chaucer, aggregation exposure inherent to large-corporate excess cyber portfolios, narrow key-person dependency around the CUO role, and platform integration dynamics under Ryan Specialty. Pera's strategic focus remains coherent around large-corporate excess cyber with cybersecurity maturity as the selection criterion. Organizational placement post-acquisition represents the most material strategic variable, balancing expanded distribution against potential shifts in product priorities and governance.

Resilience

🏢 Resilience is a cyber-focused insurtech managing general agent headquartered in San Francisco, legally operating as Arceo Labs, Inc. Founded in 2016 during its Arceo.ai era, the company functions as a program administrator writing on third-party carrier paper rather than bearing risk on its own balance sheet. Insurance products are produced or distributed through licensed intermediaries, while cybersecurity services are delivered directly by the operating company.

🌐 Multi-jurisdictional operations. Resilience operates across the US, UK, EU, and Canada through distinct distribution entities. In the US, Ocrea Risk Services, LLC (NPN 19169260) distributes products underwritten by Homeland Insurance Company of New York and Homeland Insurance Company of Delaware (Intact group). UK distribution is handled by Arceo, Ltd. under FCA authorization (reference 1007418), EU operations run through Resilience Cyber Insurance Solutions Germany GmbH (IHK zu Dortmund), and Canadian insurance services are offered by Resilience Cyber Insurance Solutions Agency Canada Ltd. with Intact Insurance Company as carrier.

👤 Leadership. The company was co-founded by CEO Vishaal "V8" Hariprasad, a licensed insurance broker, US Air Force veteran, and former co-founder of Morta Security (acquired by Palo Alto Networks), and Chairman Raj Shah, managing partner of Shield Capital and former head of DIUx. The executive team includes President Mario Vitale, Chief Underwriting Officer Maria Long, Global Head of Claims Jeremy Gittler, and CISO Chris Wheeler.

🛡️ Product suite. Resilience offers cyber insurance with limits up to $20M on a primary or excess basis and technology E&O with $10M limits targeting organizations with $25M to $10B in revenue. Explicitly described cyber coverages include up to $500,000 in eCrime coverage, funds transfer fraud recovery, and privacy wrongful act coverage. The company markets across a broad industry appetite including healthcare, financial services, manufacturing, technology, and life sciences.

🔒 Insure + Secure model. The core differentiator is an integrated model embedding in-house security engineers into the underwriting lifecycle from risk assessment through post-bind vulnerability monitoring. The Risk Operations Center provides continuous portfolio-level threat monitoring, while breach-and-attack simulations powered by AttackIQ are offered to policyholders. Claims service documents emphasize that the purchase of insurance is not tied to the purchase of security services.

📋 Claims operations. The claims function features a global in-house team available 24/7 with a stated average initial reply time under 15 minutes. Service panel materials enumerate provider categories including privacy law, digital forensics and incident response, data recovery, ransomware resolution, crisis communications, and credit monitoring. This structure supports rapid mobilization and coordination across incident types.

💰 Funding history. Resilience has raised over $225M in venture capital through a Series D led by Intact Ventures in August 2023. Prior rounds include $37M in cumulative early funding from Lightspeed Venture Partners and Founders Fund (September 2019) and an $80M Series C co-led by General Catalyst and Corey Thomas (November 2021), which valued the company at $650M per specialist press. The investor base spans generalist, defense-adjacent, and strategic insurer capital including CRV, UL Ventures, and Shield Capital.

🏦 Capacity structure. US underwriting is placed through Homeland Insurance Company of New York and Homeland Insurance Company of Delaware within the Intact group, with the Series C announcement characterizing Resilience as the cyber program manager of Intact Insurance Specialty Solutions. The Intact relationship extends to strategic investment, with the carrier group's venture arm leading the Series D. Canadian underwriting is provided by Intact Insurance Company.

⚠️ Risk factors. Key risks include capacity dependency concentration on named Intact group entities, limited public validation of loss outcomes underpinning the risk quantification model, and multi-jurisdictional regulatory complexity across four regions with separate licensed intermediaries. The business targets limits up to $20M, increasing tail sensitivity to correlated cyber catastrophe events, and expansion into technology E&O introduces professional liability dynamics beyond core cyber. The sole disclosed performance metric is a company claim of a net loss ratio three times lower than the 2022 industry average.

SafeInside Insurance

🏢 SafeInside Insurance is a cyber insurance Managing General Agent launched by Safe Security in December 2022, positioning itself as the first cybersecurity MGA to leverage continuous, API-based inside-out cyber risk telemetry and quantified exposure insights for underwriting. The contracting parent entity is SAFE Securities Inc., incorporated under Delaware law, with offices in Palo Alto, California. Whether SafeInside Insurance maintains separate legal personhood as a distinct corporation or LLC is not established in reviewed primary sources.

📡 Underwriting thesis. SafeInside Insurance targets companies hosted on public cloud providers and major SaaS platforms, including Amazon Web Services, Microsoft Azure, Google Cloud Platform, Google Workspace, Salesforce, and Zoom. The underwriting workflow is claimed to take less than 20 minutes, using read-only API integration to map cloud control telemetry to business exposure via cyber risk quantification. This construct implies a product strategy oriented toward risks where continuous monitoring data is available and quantifiable.

👤 Leadership. Key individuals are Saket Modi, Co-founder and CEO, quoted in both the 2022 MGA launch and the 2025 Series C announcement, and Steven Schwartz, VP of Insurance Strategy and Underwriting, cited in the launch context. No AXA connection was identified in reviewed sources for either individual or for SAFE's investor, capacity, or distribution relationships.

💵 Funding. Group-level venture funding for SAFE Securities Inc. exceeds $170M following a $70M Series C led by Avataar Ventures in July 2025, with co-investors including Susquehanna Asia Venture Capital, NextEquity Partners, and Prosperity7 Ventures. Earlier rounds include a $33M Series A led by BT Group in July 2021 and a $50M Series B led by Sorenson Capital in April 2023. SafeInside Insurance's standalone capitalization is not publicly disclosed, and no round-specific valuations have been released.

🤝 Distribution. The 2022 launch press release states SafeInside Insurance was appointing brokers and agents in the U.S. market. Later materials emphasize the Howden SAFE+ partnership, targeting clients with revenue above $250M and combining Howden broking with underwriting from Chubb, Mosaic Insurance, and Liberty Specialty Markets. Mosaic marketing materials describe a MOSAIC X SAFEINSIDE partnership with cyber policy features including business interruption, betterment and bricking coverage, cyber extortion, and optional Tech E&O, with capacity up to CAD $25M per risk in Canada.

🏦 Capacity. SafeInside Insurance was announced as backed by an AM Best A-rated carrier and a panel of global reinsurance partners, though neither the carrier nor the reinsurers are named. The binder structure, corridor terms, limits, and territories remain undisclosed. For the Mosaic partnership, market security is referenced via certain underwriters at Lloyd's of London led by Mosaic Syndicate 1609, though this does not evidence SafeInside Insurance's own participation as a Lloyd's coverholder.

📊 Financial indicators. SafeInside Insurance does not publicly disclose statutory insurance filings, audited financials, or MGA key underwriting KPIs. SAFE's platform business claims triple-digit revenue growth for three consecutive years, but this is an unaudited marketing claim and does not constitute insurance underwriting performance data. Gross written premium, policy count, loss ratio, net income, and headcount are all unverifiable from reviewed sources.

⚠️ Risk factors. Capacity dependency risk is structurally high given reliance on unnamed third-party carrier paper, creating concentration and transparency risk. Regulatory posture ambiguity is a material diligence blocker, as SAFE's Terms of Service disclaim involvement in insurance or brokerage services while separate materials describe an MGA. Aggregation risk is inherent for a cyber portfolio focused on common cloud and SaaS dependencies, and execution risk is elevated due to limited evidence of an ongoing standalone MGA franchise post-2022.

🚀 Outlook. SAFE's stated strategic trajectory is toward agentic AI and autonomous cyber risk management across CRQ, TPRM, and CTEM, supported by venture funding and acquisitions of RiskLens and Balbix. For SafeInside Insurance specifically, the most evidence-backed trajectory is continued embedding into broker-carrier distribution constructs rather than expansion into additional insurance lines as a branded MGA. Key open diligence questions concern current MGA licensing status, the identity of the A-rated capacity provider, and the legal entity contracting for insurance placements under the SafeInside Insurance brand.

Stoïk

🏢 Stoïk is a Paris-based cyber-focused managing general agent founded on 1 June 2021 that integrates insurance underwriting delegation, embedded prevention and detection, and in-house incident response under a single platform. Registered as a simplified joint stock company (SAS) under RCS Paris number 900 293 887, the company positions itself as Europe's first cyber MGA. Capacity is provided by Tokio Marine Europe S.A. (A+, S&P), Axeria IARD (A-, AM Best), and Swiss Re.

🌍 European footprint. Stoïk operates across six markets — France, Germany, Austria, Spain, Luxembourg, and Belgium — with offices in Paris, Munich, Madrid, and Vienna. The Spanish business is conducted through Stoik Iberia, S.L. under DGSFP MGA authorization, while Belgium was entered in September 2025 through the acquisition of CyberContract, the company's first external growth operation.

👥 Leadership. The company was co-founded by Jules Veyrat (President/CEO), Alexandre Andreini (Risk Director, former Wavestone consultant), Nicolas Sayer (Technical Director), and Philippe Mangematin (Insurance Director, actuary, former Swiss Re, Seyna co-founder). Franziska Geier leads the German operations as Managing Director of Stoïk GmbH after a decade at Markel, while Vincent Nguyen serves as Director of Cybersecurity.

💰 Funding. Stoïk has raised approximately €69.8 million across five equity rounds from January 2022 through January 2026. Key rounds include the June 2022 Series A of €11 million led by Andreessen Horowitz, the October 2024 Series B of €25 million led by Alven, and the January 2026 Series C of €20 million co-led by Impala and Opera Tech Ventures. Strategic insurance investors include Munich Re Ventures and Tokio Marine HCC International, which also serves as a capacity partner.

📊 Scale. The company protects more than 10,000 companies and works with over 2,000 broker partners, covering around 600 new companies each month. Gross written premium reached approximately €50 million in 2025, with net revenue growing over 200 percent year-over-year. Headcount exceeded 130 employees as of early 2026, with plans to scale to 200 within 12 months.

🛡️ Product and coverage. The insurance offering covers business interruption, cyber ransom, notification costs, cyber fraud, crisis management, and third-party data liability. A June 2024 conditions update expanded covered triggers to include human error, social engineering fraud, and malicious insider acts, while adding guarantees for administrative investigations, PCI DSS sanctions, and post-attack IT improvement costs. Policyholders using Stoïk Protect receive a 25 percent deductible reduction.

🔐 Cybersecurity services. Stoïk Protect, included in the insurance contract, provides weekly external attack surface audits, internal cloud and Active Directory configuration analysis, and phishing simulation with ongoing training. Stoïk MDR pairs CrowdStrike EDR with continuous monitoring by in-house cyber experts, offering a 15 percent premium reduction upon implementation. CERT-Stoïk provides 24/7 incident response with defined triage, coordination, and resolution services.

🤝 Distribution and partnerships. Stoïk operates a broker-centric model with a fully digital broker platform supporting online quoting, underwriting, policy management, and performance monitoring. The underwriting appetite spans companies with turnover up to €1 billion and coverage limits up to €10 million, with broad sector coverage excluding activities such as weapons, gambling, cryptocurrency, and airports.

🚀 Strategy. Disclosed priorities include continued European expansion with emphasis on Central and Southern Europe, increased investment in proprietary AI capabilities and AI agents, and product diversification through combined professional liability plus cyber (Cyber Pro IT) and broker-distributed MDR. The CyberContract acquisition signals an appetite for inorganic market consolidation across the European cyber insurance landscape.

Sync Underwriting

🏢 Sync Underwriting is an Australian cyber-specialist underwriting agency (MGA) headquartered at The Commons, 32 York St, Sydney NSW 2000, registered as Sync Underwriting Pty Ltd (ABN 17 678 294 712). The ABN and GST registration became active on 18 June 2024, and the agency was formally launched on 3 February 2025 through Rhodian Group, a shared-equity underwriting network providing centralized legal, compliance, finance, HR, marketing, claims, and technology services. The leadership team comprises Richard Smith (CEO), Kerryn Dominguez (CFO), Stephen O'Young (CTO), Doug Signorini (Head of Compliance), Tessa Chirnside (COO), and Albert Napoli (Head of Portfolio and Actuarial).

📋 Regulatory framework. Sync Underwriting operates as a Corporate Authorised Representative (CAR No. 1312389) of Halo Underwriting Pty Ltd, which holds AFS Licence No. 237267. Australia does not use a single MGA license construct; the relevant control point is the AFSL and authorized representative regime administered by ASIC. The proposal form characterizes Halo Underwriting as the appointed agent of the insurer under a binder agreement, with Sync Underwriting acting as the ultimate agent of the insurer.

💰 Capitalization and ownership. Rhodian Group holds a meaningful equity position in its launched agencies and itself carries a disclosed minority investment from Amwins, described as a minority stake in an Australian MGA incubator. Direct equity ownership of Sync Underwriting by Amwins is not stated. No equity fundraising rounds, funding amounts, or valuations specific to Sync Underwriting have been publicly disclosed.

🔗 Capacity providers. The primary insurer for the Sync Cyber product is Tokio Marine & Nichido Fire Insurance Co., Ltd. (ABN 80 000 438 291; AFS Licence No. 246548). The agency also acts under a binding authority for certain underwriters at Lloyd's, though no syndicate or coverholder number has been published. Rhodian communications indicate an additional binder was launched to support wider appetite, but no capacity quantum is disclosed.

🎯 Target market. Sync Underwriting positions its cyber product for small and mid-sized businesses in Australia with revenue up to $500 million. A proposal-form bifurcation at $25 million revenue triggers enhanced security questions for larger insureds. Covered verticals include construction, trades, health and medical, financial services, manufacturing, education, agriculture, and IT, while the proposal form screens higher-risk activities including adult entertainment, defense contracting, distributed ledger technology, gambling, and payment processing.

🛡️ Cyber coverage. The Sync Cyber product offers modular coverage with standard first-party elements including business interruption (12-month indemnity period), contingent BI, cyber extortion, bricking loss, precautionary shutdown, reputational harm, system failure, social engineering loss, push payment loss, and cyber reward payment. Optional elections include first-party Cyber Crime and third-party D&O liability. Packaged limits extend to $5 million on the proposal form, with marketed primary limits of $10 million and excess-of-loss opportunities, and the product claims no retroactive dates.

🩹 Incident response. Embedded breach response services are provided through a partnership with Wotton Kearney, which coordinates a 24/7 incident response hotline and a panel model including privacy lawyers, IT forensic specialists, PR experts, recovery experts for data restoration, identity monitoring via IDCARE, specialist ransomware negotiators, and notification services. Pre-bind technical scanning, continuous monitoring, and MDR/SOC access are not disclosed in public materials.

🖥️ Distribution and technology. Sync Underwriting is exclusively broker-distributed, with a fully automated broker portal producing quotes in under two minutes via five quick-quote questions. The web and portal platform is provided by Shapeable, and the Exposure Explorer offers a library of cyber exposure content for broker enablement. The agency reports a headcount of 2 to 10 employees on its LinkedIn profile.

⚠️ Risk factors and outlook. Key risks include capacity dependency on Tokio Marine and Lloyd's binder relationships, aggregation exposure from correlated BI and system-failure covers, claims response vendor concentration through Wotton Kearney, competitive pressure from global cyber MGAs entering Australia, and key-person concentration around the CEO. Strategic pillars emphasize feature-forward Australian cyber wording, broker enablement, Rhodian network leverage, and the incident response partnership, with no disclosed product expansion beyond cyber.