Elpha Secure
{{#invoke:infobox|infoboxTemplate|child= | bodyclass = vcard
| above =
| subheader = Elpha Secure Technology, Inc. | subheaderstyle = font-weight:bold; font-size:105%;
| image = {{#invoke:InfoboxImage|InfoboxImage|image=Logo of Elpha Secure.svg|size=|sizedefault=frameless|alt=Elpha Secure logo}} | caption =
| header1 = Corporate identity
| label2 = Type | data2 = Private β cyber insurtech MGA | class2 = category
| label3 = Traded as | data3 =
| label4 = ISIN | data4 =
| label5 = LEI | data5 =
| label6 = Registration number | data6 =
| label7 = Regulated | data7 =
| label8 = License type | data8 = Surplus lines MGA
| label9 = NPN | data9 =
| label10 = Coverholder reference | data10 =
| label11 = License number | data11 =
| label12 = Incorporation | data12 = Delaware
| label13 = Founded | data13 = 2018{{#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Start date and age with unknown parameter "_VALUE_"|showblankpositional=1| 1 | 2 | 3 | br | df | end | p | paren }}
| label14 = Headquarters | data14 = New York, New York | class14 = label
| label15 = Country | data15 =
| label16 = Domicile | data16 = Delaware
| label17 = Licensed jurisdictions | data17 = All 50 U.S. states
| label18 = Regulator | data18 =
| label19 = Ultimate parent | data19 =
| label20 = Major shareholders
| data20 = Canapi Ventures
Stone Point Ventures
AXIS Capital
State Farm Ventures
The Hartford STAG Ventures
Fermat Capital Management
EOS Venture Partners
| label21 = Group status | data21 =
| label22 = Key people
| data22 = Preetam Dutta, co-founder and CEO
Gordon Malin, co-founder and CEO
Josh MacDonald, Chief Underwriting Officer
David Williams-King, CTO
| label23 = Number of employees | data23 = 40 (third-party estimate)
| header24 = Business & markets
| label25 = Operating status | data25 =
| label26 = Customer segments | data26 = Small and midsize businesses (revenue up to $100 million)
| label27 = Lines of business | data27 = Cyber insurance
| label28 = Business segments | data28 =
| label29 = Main products & services
| data29 = Cyber insurance policy
Elphaware security software suite
ES Mail email security
| label30 = Technology platform | data30 = Socotra (cloud-native insurance platform)
| label31 = Capacity providers
| data31 = AXIS Surplus Insurance Company
Everest Indemnity Insurance Company (Everest Re Group)
| label32 = Distribution | data32 = Wholesale insurance brokers
| label33 = Geographic markets | data33 = United States (all 50 states)
| label34 = Branches | data34 =
| label35 = Customers served | data35 =
| label36 = Competitors
| data36 = At-Bay
Coalition
Cowbell
| label37 = Market share rank | data37 =
| header38 = Key financials
| label39 = Currency | data39 =
| label40 = Market cap | data40 =
| label41 = Revenue | data41 =
| label42 = Insurance revenue | data42 =
| label43 = Operating income | data43 =
| label44 = EBITDA | data44 =
| label45 = Net income | data45 =
| label46 = Gross written premium | data46 =
| label47 = Net written premium | data47 =
| label48 = Loss ratio | data48 =
| label49 = Combined ratio | data49 =
| label50 = Commission / MGA fee | data50 =
| label51 = Total assets | data51 =
| label52 = Invested assets | data52 =
| label53 = Technical reserves | data53 =
| label54 = Contractual service margin | data54 =
| label55 = Net debt | data55 =
| label56 = Equity | data56 =
| label57 = Operating margin | data57 =
| label58 = Solvency ratio | data58 =
| label59 = Return on equity | data59 =
| label60 = Total funding raised | data60 = >$29 million
| label61 = Last funding round | data61 = Series A, $20 million, October 2022
| label62 = Last known valuation | data62 =
| label63 = Lead investors | data63 = Canapi Ventures (Series A)
| label64 = Capital structure | data64 =
| label65 = Insurer financial strength | data65 =
| label66 = Capacity partner ratings | data66 =
| label67 = External ratings | data67 =
| data68 =
}}{{#invoke:Check for unknown parameters|check|unknown=|preview = Page using Template:Infobox company with unknown parameter "_VALUE_"|ignoreblank=y | address | alt | branches | capacity_partner_ratings | capacity_providers | capital_structure | caption | child | combined_ratio | commission_rate | competitors | country | coverholder_ref | csm | currency | customer_segments | distribution | domicile | ebitda | embed | equity | exchange | financial_year | footnotes | founded | geographic_markets | group_status | gwp | headquarter | headquarters | ifsr | image | image_size | imagesize | incorporated | incorporation | insurance_jurisdictions | insurance_revenue | invested_assets | isin | key_people | last_round | last_valuation | lead_investors | legal_name | lei | license_number | license_type | lines_of_business | logo | logo_alt | logo_caption | logo_size | loss_ratio | market_cap | market_share_rank | markets_served | name | net_debt | net_income | npn | num_customers | num_employees | nwp | operating_income | operating_margin | operating_status | parent | products | ratings | registered | registration_number | regulated | regulator | reporting_year | revenue | roe | segments | shareholders | shareholders_equity | solvency_ratio | status_in_group | supervisory_authority | technology_platform | technical_reserves | ticker | total_assets | total_funding | total_revenue | type | ultimate_parent }} Template:Summary:Elpha Secure The following sections provide further details.
{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}
Corporate and regulatory footprint
ποΈ Legal identity. Elpha Secure Technology, Inc. is a Delaware corporation incorporated in 2018, as recorded in a Regulation D Form D filing with the U.S. Securities and Exchange Commission (CIK 0001850887).[1] The company's website identifies the operating entity as "Elpha Secure Technology Inc." with a principal business address at 580 Fifth Avenue, Suite 820, New York, NY 10036.[2] A prior address at 576 Fifth Avenue, Suite 903, New York, NY 10036 appears in the SEC filing.[1]
π Regulatory positioning. Elpha positions itself as a "Fully Licensed MGA" operating across all 50 U.S. states, with surplus lines disclaimers indicating that products are offered only through licensed surplus lines producers.[3][4] Based on its own MGA positioning and explicit statements that it is "financially backed" by specific carriers, Elpha is most supportably classified as a cyber insurtech MGA with delegated underwriting authority rather than a licensed risk-bearing carrier.[3] Carrier licensure for a proprietary balance-sheet carrier was not identified in the sources reviewed.
π Licensing evidence. A public license record from the Florida Department of Financial Services shows a senior claims professional associated with Elpha holding nonresident property and casualty and nonresident surplus lines licensing categories at the same New York address.[5] This evidences the use of state producer licensing regimes for personnel, though it does not substitute for a full entity producer licensing review across states. Disclosed capacity references in reviewed materials point to U.S. carrier paper rather than Lloyd's syndicate participation.[3]
{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}
Business model and operating architecture
π Core thesis. Elpha's model combines cyber insurance with embedded security software, aiming to reduce loss frequency and severity by integrating security tooling and managed support into the insurance proposition.[2] The insurance product is marketed as a "cyber insurance policy with market-leading coverage," paired with specific economic enhancements β notably reduced ransomware retention and shortened business interruption waiting periods β when the insured uses Elpha's security solution.[3] The security product, commonly branded "Elphaware" in earlier materials, is positioned as SaaS installed on endpoints with multiple modules including EDR-like monitoring, backups, MFA for remote access, and SOC support.[6]
π’ Target market. Multiple sources converge on an SME-to-lower-mid-market orientation, with Elpha's marketing emphasizing "small businesses" and "small and midsize businesses."[7] A strategic partnership expansion announced by AXIS Capital Holdings Limited directs standalone cyber submissions for policyholders with revenue up to $100 million to Elpha's platform via wholesale brokers, effective July 1, 2024.[8]
π° Bundled economics. Elpha's broker-facing marketing states that a "single premium includes" both insurance and its software suite, suggesting bundled economics for the core insured distribution channel.[3] Separately, a co-branded page with Selective Insurance indicates per-device pricing tiers ($25 and $37 per device per year), implying the software can also be packaged as a standalone subscription or affinity benefit depending on channel structure.[9]
{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}
Product and coverage analysis
π Policy structure and pricing. Elpha advertises a base policy starting at $1,000 and "insurance + software starting cost $1,000."[10] Marketed enhancements include a $500 extortion loss retention, a 6-hour waiting period, and a 365-day period of restoration for business interruption when the insured adopts the security solution.[3] Marketing frames the product as "straightforward" with embedded software upgrades and enhancements, though the modularity of insuring agreements and distinctions between proprietary and carrier wording are not detailed in accessible product-facing pages.[7]
π‘οΈ First-party coverages. Elpha's marketing pages explicitly list business interruption and system failure coverage (with waiting-period and restoration-period enhancements), ransomware and cyber extortion coverage (with an extortion loss retention enhancement), and incident response expenses.[10]
βοΈ Third-party coverages. Listed third-party coverages include network security and privacy liability, regulatory fines, and PCI coverage.[10]
π₯ Breach response model. Elpha states it maintains a curated provider panel and encourages policyholders to use listed providers. The claims page includes reimbursement gating language stipulating that only expenses incurred through engagement of listed response providers and with Elpha's prior written consent qualify as incident response expenses under the first-party insuring agreement.[11] This indicates a panel-led incident response model with economic controls rather than unrestricted vendor choice. Elpha's claims page provides an incident hotline routed through incident response counsel and references a formal claims email notice process.[11]
π Coverage differentiation. Elpha markets "enhanced coverage" β lower retentions, shorter waiting periods, and longer restoration periods β when the insured adopts the security solution.[7] This positions the insurance economics as an adoption lever for the security tooling.
{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}
Cybersecurity services and technology stack
π₯οΈ Service posture. Elpha's software is positioned as endpoint-installed tooling with additional managed services, supported by a Security Operations Center.[12] Pre-bind capabilities include a "deep scanning tool" for external network and cloud assets to detect vulnerabilities and misconfigurations, plus a monthly outreach cadence focused on worst risks with an option for quarterly reporting.[13] This functionally resembles underwriting hygiene enforcement and risk-improvement workflows aligned with cyber insurance subjectivities.
π Continuous in-force services. Elpha describes a seven-component security agent comprising real-time threat monitoring (EDR-like), remote access protection with MFA, SOC outreach for top patches and mitigations, email security ("ES Mail") for phishing, spam, and fraudulent financial transaction identification, patching capabilities (vulnerability and version management), dark web monitoring, and exposed credential monitoring.[13]
π€ Technology partners. Elpha launched its cyber insurance offering on Socotra's cloud-native platform with an implementation time of less than two months. An analytics partnership with CyberCube provides Portfolio Manager and Single Point of Failure Intelligence for portfolio accumulation management and capital discussions.[2][14] In October 2025, Elpha announced a partnership with SentinelOne to integrate its insurance offering with SentinelOne's security platform for SMB customers.[15]
β Validation signals. Elpha states its software is third-party audited by Security Compass Advisory and references VB100 testing as a validation mechanism.[13][11]
{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}
Distribution, geography, and partnerships
π Channel architecture. Elpha works with wholesale insurance brokers and markets "quotes in seconds" with an online binding workflow.[7] The AXIS partnership expansion also references routing submissions via wholesale broker partners to Elpha.[8] A digital distribution partnership with Affinity Advisors further streamlines access to cyber insurance and security solutions through wholesale broker partners.[16]
π Geographic footprint. Elpha states it operates across all 50 U.S. states.[3] The public site is U.S.-oriented with U.S. contact information and surplus lines disclaimers; operational capabilities outside the United States are not described in reviewed sources.[4]
π¦ Capacity providers. Elpha's broker page states it is financially backed by AXIS Surplus Insurance Company and Everest Re Group.[3] Specialist coverage further supports a multi-carrier program structure, naming Everest Indemnity Insurance Company and AXIS Surplus Insurance Company as insurers underwriting the cyber program.[17]
π€ AXIS relationship. AXIS disclosed that the relationship commenced in 2021 and that AXIS became both an investor in and a capacity provider for Elpha.[8] By July 2024, AXIS began directing certain standalone SME cyber submissions for risks with revenue up to $100 million to Elpha's platform.[8] This is a meaningful indicator of institutional confidence and suggests AXIS viewed Elpha as a scalable distribution and servicing mechanism for a portion of its SME cyber portfolio.
{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}
Leadership, governance, and personnel
π€ Founders. Preetam Dutta is identified as CEO in Elpha communications and is listed as an executive officer and director in the SEC Form D filing.[1][18] Gordon Malin is identified by AXIS as Elpha's co-founder and CEO as of June 2024.[8] External profiling and Elpha's positioning indicate a technical cybersecurity orientation at the founding level.[18]
π Education. David Williams-King's doctoral training is associated with Columbia University, as described on a Columbia CS personal page.[19] Preetam Dutta's education claims (PhD at Columbia; undergraduate at Yale University) appear in secondary profiles rather than primary filings.[20]
π Key leadership roles. Josh MacDonald is publicly referenced as Chief Underwriting Officer in multiple industry contexts including events and commentary.[21] David Williams-King self-identifies as having become CTO at Elpha after completing a PhD.[19] Perry Tsao appears in a Florida license record with a business address aligned to Elpha and holds nonresident P&C and nonresident surplus lines licensing categories.[5]
{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}
Funding and financial signals
π΅ Series A. Elpha completed a $20 million Series A in October 2022 led by Canapi Ventures with participation from existing investors including Stone Point Ventures, AXIS Capital, State Farm Ventures, The Hartford STAG Ventures, Fermat Capital Management, and EOS Venture Partners.[14] Socotra's announcement references Elpha having raised "more than $9 million" in seed funding prior to the Series A. Cumulative disclosed funding therefore exceeds $29 million.[14]
| Round | Date | Amount raised | Lead investor(s) | Notable co-investors | Cumulative funding |
|---|---|---|---|---|---|
| Seed | β | >$9M | β | β | >$9M |
| Series A | October 2022 | $20M | Canapi Ventures | Stone Point Ventures; AXIS Capital; State Farm Ventures; The Hartford STAG Ventures; Fermat Capital Management; EOS Venture Partners | >$29M |
| Total | >$29M | >$29M |
π Financial transparency. Elpha does not publicly disclose GWP, policy count, loss ratio, or revenue in the reviewed sources. The only broadly accessible scale proxy is a third-party headcount estimate of approximately 40 employees.[22][16] No statutory insurance financial filings attributable to an Elpha-owned carrier entity were identified; the review relied on SEC Form D identity data, insurer and partner disclosures, and company-controlled product pages.[1]
{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}
Competitive positioning and risks
π― Cluster placement. Within the cyber insurtech ecosystem, Elpha fits the "embedded cyber defense + cyber insurance" cluster: an underwriting structure plus active security tooling and services, with insurance economics used as an adoption lever for the security product.[10]
π Peer analogs. At-Bay positions a combined insurance and security platform including MDR, with policy enhancements tied to adopting security controls.[23] Coalition markets "active" cyber insurance with incident response and affiliated security capabilities.[24] Cowbell emphasizes continuous underwriting and continuous risk assessment as core differentiators.[25] Elpha's differentiation relative to these larger platforms rests not on scale disclosures β which are limited β but on explicit program relationships with AXIS that route SME submissions to its platform and on security product breadth centered on endpoint-installed capabilities plus SOC outreach, including newer email-security tooling.[8]
π° Moat assessment. Elpha's CyberCube partnership for portfolio analytics and accumulation risk tooling indicates an intent to professionalize catastrophic cyber risk management for capacity discussions.[2] The software suite is described as modular and configurable (active and passive modes), covering endpoint monitoring, backups, email security, and vulnerability management β broader than a pure scan-based underwriting overlay.[13] AXIS's 2024 decision to direct certain SME submissions to Elpha indicates distribution leverage, and disclosed carrier backers (AXIS Surplus and Everest entities) provide a positive stability signal, though AXIS also being an investor intensifies counterparty concentration risk.[3][8]
β οΈ Risk factors. The program's backing by a limited set of carriers creates fragility if capacity appetite changes, pricing corridors tighten, or performance triggers are invoked.[3] Cyber accumulation remains the existential risk of the class; a Milliman case study quoting Elpha's underwriting leadership highlights catastrophic systemic exposure framing.[26] Bundling security into premium requires consistent adoption and operational support to realize loss benefits, and deployment and configuration remain operational realities.[13] Larger "InsurSec" peers also market insurance enhancements linked to security adoption and many operate at significantly larger disclosed scale, increasing their ability to invest in threat intelligence and incident response.[23] The model relies on surplus lines distribution and producer licensing compliance across many jurisdictions.[4]
{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}
Strategic trajectory
π Product-market broadening. In February 2023, Elpha stated it increased capacity to quote businesses with revenues up to $100 million and broadened underwriting appetite into additional industries including transportation, entertainment, life sciences, and certain education sectors.[18]
π Institutional distribution scaling. AXIS's 2024 expanded partnership indicates a deliberate shift of SME cyber submissions to Elpha's platform beginning July 1, 2024, covering standalone cyber submissions for risks with revenue up to $100 million routed via wholesale brokers.[8]
βοΈ Security capability expansion. Elpha's ES Mail features and associated fraud-oriented detections indicate expansion from endpoint tooling into email security and financial transaction fraud signaling.[13] The SentinelOne partnership (October 2025) signals a strategy of integrating with a mainstream endpoint security platform, potentially as an alternative to purely proprietary controls or as a co-managed layer.[15]
ποΈ Newsroom developments. A February 2026 Elpha newsroom headline indicates the ES Mail launch and cybercrime limit expansion to $500,000.[4]
{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}
Company timeline
| Date | Event |
|---|---|
| 2018 | Delaware incorporation and founding.[1] |
| March 2021 | AXIS announces strategic partnership to provide cyber insurance and Elphaware-based software protection for small businesses.[6] |
| April 2022 | Cyber insurance offering launches on Socotra platform; seed funding referenced as "more than $9 million." |
| October 2022 | $20 million Series A led by Canapi Ventures announced.[14] |
| November 2022 | CyberCube partnership announced for portfolio analytics and single-point-of-failure intelligence.[2] |
| February 2023 | Increased capacity to quote up to $100 million revenue risks; broadened underwriting appetite.[18] |
| JuneβJuly 2024 | AXIS expands partnership; begins routing certain SME standalone cyber submissions to Elpha via wholesale brokers (effective July 1, 2024).[8] |
| October 2025 | SentinelOne partnership announced.[15] |
| February 2026 | Newsroom headline indicates ES Mail launch and cybercrime limit expansion to $500,000.[4] |
{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}
See also
{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}
References
- β 1.0 1.1 1.2 1.3 1.4 {{#invoke:citation/CS1|citation |CitationClass=web }}
- β 2.0 2.1 2.2 2.3 2.4 {{#invoke:citation/CS1|citation |CitationClass=web }}
- β 3.00 3.01 3.02 3.03 3.04 3.05 3.06 3.07 3.08 3.09 {{#invoke:citation/CS1|citation |CitationClass=web }}
- β 4.0 4.1 4.2 4.3 4.4 {{#invoke:citation/CS1|citation |CitationClass=web }}
- β 5.0 5.1 {{#invoke:citation/CS1|citation |CitationClass=web }}
- β 6.0 6.1 {{#invoke:citation/CS1|citation |CitationClass=web }}
- β 7.0 7.1 7.2 7.3 {{#invoke:citation/CS1|citation |CitationClass=web }}
- β 8.0 8.1 8.2 8.3 8.4 8.5 8.6 8.7 8.8 {{#invoke:citation/CS1|citation |CitationClass=web }}
- β {{#invoke:citation/CS1|citation |CitationClass=web }}
- β 10.0 10.1 10.2 10.3 {{#invoke:citation/CS1|citation |CitationClass=web }}
- β 11.0 11.1 11.2 {{#invoke:citation/CS1|citation |CitationClass=web }}
- β {{#invoke:citation/CS1|citation |CitationClass=web }}
- β 13.0 13.1 13.2 13.3 13.4 13.5 {{#invoke:citation/CS1|citation |CitationClass=web }}
- β 14.0 14.1 14.2 14.3 {{#invoke:citation/CS1|citation |CitationClass=web }}
- β 15.0 15.1 15.2 {{#invoke:citation/CS1|citation |CitationClass=web }}
- β 16.0 16.1 {{#invoke:citation/CS1|citation |CitationClass=web }}
- β {{#invoke:citation/CS1|citation |CitationClass=web }}
- β 18.0 18.1 18.2 18.3 {{#invoke:citation/CS1|citation |CitationClass=web }}
- β 19.0 19.1 {{#invoke:citation/CS1|citation |CitationClass=web }}
- β {{#invoke:citation/CS1|citation |CitationClass=web }}
- β {{#invoke:citation/CS1|citation |CitationClass=web }}
- β {{#invoke:citation/CS1|citation |CitationClass=web }}
- β 23.0 23.1 {{#invoke:citation/CS1|citation |CitationClass=web }}
- β {{#invoke:citation/CS1|citation |CitationClass=web }}
- β {{#invoke:citation/CS1|citation |CitationClass=web }}
- β {{#invoke:citation/CS1|citation |CitationClass=web }}
{{#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Reflist with unknown parameter "_VALUE_"|ignoreblank=y| 1 | colwidth | group | liststyle | refs }}