Invision Cyber
{{#invoke:infobox|infoboxTemplate|child= | bodyclass = vcard
| above =
| subheader = Acies Management Holdings Limited | subheaderstyle = font-weight:bold; font-size:105%;
| image = {{#invoke:InfoboxImage|InfoboxImage|image=Logo of Invision Cyber.svg|size=|sizedefault=frameless|alt=Invision Cyber logo}} | caption =
| header1 = Corporate identity
| label2 = Type | data2 = Private β insurtech MGA (Lloyd's coverholder) | class2 = category
| label3 = Traded as | data3 =
| label4 = ISIN | data4 =
| label5 = LEI | data5 =
| label6 = Registration number | data6 =
| label7 = Regulated | data7 =
| label8 = License type
| data8 = FCA authorization (via Acies Management Holdings Limited)
Lloyd's coverholder (delegated authority)
| label9 = NPN | data9 =
| label10 = Coverholder reference | data10 =
| label11 = License number | data11 =
| label12 = Incorporation | data12 = United Kingdom
| label13 = Founded | data13 = September 15, 2025{{#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Start date and age with unknown parameter "_VALUE_"|showblankpositional=1| 1 | 2 | 3 | br | df | end | p | paren }}
| label14 = Headquarters | data14 = London, United Kingdom | class14 = label
| label15 = Country | data15 =
| label16 = Domicile | data16 = United Kingdom
| label17 = Licensed jurisdictions
| data17 = United Kingdom (FCA-authorized)
United States (via licensed E&S brokers)
| label18 = Regulator | data18 = Financial Conduct Authority (FRN 830581)
| label19 = Ultimate parent | data19 = Vector Investment Capital (Holdings) Limited
| label20 = Major shareholders
| data20 = Vector Investment Capital (Holdings) Limited (75%+ control)
Correlation Holdings Limited (minority, Acies MGU level)
| label21 = Group status | data21 =
| label22 = Key people
| data22 = Stuart Essex, Managing Director
James Ingram, CTO and Senior Underwriter
Mark Heath, CEO, Acies MGU
| label23 = Number of employees | data23 = 51β200 (LinkedIn, directional)
| header24 = Business & markets
| label25 = Operating status | data25 =
| label26 = Customer segments | data26 = US-based Trend Micro Vision One customers
| label27 = Lines of business | data27 = Cyber insurance
| label28 = Business segments | data28 =
| label29 = Main products & services | data29 = Invision Insight Policy
| label30 = Technology platform | data30 = Trend Micro Vision One XDR and Cyber Risk Exposure Management (CREM) telemetry integration
| label31 = Capacity providers
| data31 = Beazley
Munich Re
Antares
| label32 = Distribution | data32 = Specialist brokers (primary: Woodruff Sawyer)
| label33 = Geographic markets | data33 = United States (via UK-based Lloyd's delegated authority)
| label34 = Branches | data34 =
| label35 = Customers served | data35 =
| label36 = Competitors
| data36 = Coalition
At-Bay
Cowbell
Resilience
BOXX Insurance
| label37 = Market share rank | data37 =
| header38 =
| label39 = Currency | data39 =
| label40 = Market cap | data40 =
| label41 = Revenue | data41 =
| label42 = Insurance revenue | data42 =
| label43 = Operating income | data43 =
| label44 = EBITDA | data44 =
| label45 = Net income | data45 =
| label46 = Gross written premium | data46 =
| label47 = Net written premium | data47 =
| label48 = Loss ratio | data48 =
| label49 = Combined ratio | data49 =
| label50 = Commission / MGA fee | data50 =
| label51 = Total assets | data51 =
| label52 = Invested assets | data52 =
| label53 = Technical reserves | data53 =
| label54 = Contractual service margin | data54 =
| label55 = Net debt | data55 =
| label56 = Equity | data56 =
| label57 = Operating margin | data57 =
| label58 = Solvency ratio | data58 =
| label59 = Return on equity | data59 =
| label60 = Total funding raised | data60 =
| label61 = Last funding round | data61 =
| label62 = Last known valuation | data62 =
| label63 = Lead investors | data63 =
| label64 = Capital structure | data64 =
| label65 = Insurer financial strength | data65 =
| label66 = Capacity partner ratings | data66 =
| label67 = External ratings | data67 =
| data68 =
}}{{#invoke:Check for unknown parameters|check|unknown=|preview = Page using Template:Infobox company with unknown parameter "_VALUE_"|ignoreblank=y | address | alt | branches | capacity_partner_ratings | capacity_providers | capital_structure | caption | child | combined_ratio | commission_rate | competitors | country | coverholder_ref | csm | currency | customer_segments | distribution | domicile | ebitda | embed | equity | exchange | financial_year | footnotes | founded | geographic_markets | group_status | gwp | headquarter | headquarters | ifsr | image | image_size | imagesize | incorporated | incorporation | insurance_jurisdictions | insurance_revenue | invested_assets | isin | key_people | last_round | last_valuation | lead_investors | legal_name | lei | license_number | license_type | lines_of_business | logo | logo_alt | logo_caption | logo_size | loss_ratio | market_cap | market_share_rank | markets_served | name | net_debt | net_income | npn | num_customers | num_employees | nwp | operating_income | operating_margin | operating_status | parent | products | ratings | registered | registration_number | regulated | regulator | reporting_year | revenue | roe | segments | shareholders | shareholders_equity | solvency_ratio | status_in_group | supervisory_authority | technology_platform | technical_reserves | ticker | total_assets | total_funding | total_revenue | type | ultimate_parent }}
Template:Summary:Invision Cyber
The following sections provide further details.
{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}
Corporate profile and regulatory footprint
π’ Trading identity. Invision Cyber is a trading style of Acies Management Holdings Limited, a private limited company registered in the United Kingdom with a registered office in London.[1][2][3] The underlying legal entity, Acies Management Holdings Limited, was incorporated on 8 January 2018 under Companies House company number 11136744 and remains an active private limited company.[4] Invision Cyber itself launched publicly on 15 September 2025 as a "new cyber insurance MGA."[2]
π Regulatory authorization. The company holds FCA firm reference number 830581, registered under Acies Management Holdings Limited, and operates as an FCA-authorized delegated authority underwriting operation on behalf of Lloyd's syndicates.[5] The business is conducted in the United Kingdom in respect of policies sourced through US-domiciled, licensed excess and surplus lines brokers, with US insureds relying on the advice of a licensed broker.[5] Invision Cyber operates as a Lloyd's of London coverholder with delegated authority and is backed by three Lloyd's syndicates.[5][2] The operating model involves underwriting on behalf of multiple Lloyd's syndicates; there is no evidence that Invision Cyber holds an insurance carrier license or writes on its own balance sheet.[5]
ποΈ Group structure. Invision Cyber is described as "an Acies company."[6] The controlling party for Acies Management Holdings Limited is Vector Investment Capital (Holdings) Limited, which holds 75% or more of shares and voting rights and the right to appoint or remove directors.[7] Vector Investment Capital (Holdings) Limited was previously named Meridian Group Holdings Limited until 15 October 2024.[8] The Acies group also operates a European intermediation subsidiary, Acies Europe GmbH, with a German intermediary registration, though this entity is not presented as the operating entity for the Invision Cyber US product.[9]
π Operational address. Public disclosures reference operational offices on Fenchurch Street, London, with varying suite numbers across pages.[10] A LinkedIn company profile lists 51 to 200 employees as a self-reported directional range.[11]
{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}
Leadership and governance
π€ Founding principals. Launch communications identify two key individuals associated with founding the MGA: Stuart Essex, described as a London and Lloyd's market veteran and managing director, and James Ingram, described as a cyber expert who also serves as CTO and senior underwriter.[2] At the parent group level, Mark Heath is identified as CEO of Acies MGU and is quoted regarding strategy in the launch release.[2]
π AXA connection. A public LinkedIn profile for Stuart Essex describes him as formerly Head of UK Professional Indemnity at AXA XL, establishing a direct and material AXA connection at the founder level.[12] No evidence in Tier 1 materials indicates that AXA entities provide capacity, distribution, or equity financing to Invision Cyber; all explicitly named capacity partners are non-AXA entities.[6]
{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}
Ownership, funding, and capital structure
π¦ Corporate ownership. Companies House filings show Vector Investment Capital (Holdings) Limited as the active person with significant control of Acies Management Holdings Limited, holding 75% or more of shares and voting rights and the right to appoint or remove directors.[7] Vector Investment Capital (Holdings) Limited was notified as PSC on 9 July 2019.[7]
π° Group-level investment. A company press release states that Acies MGU secured "significant long-term" minority investment from Correlation Holdings Limited, described as a "large family office," though no amount, valuation, or transaction date is provided.[13] No venture funding rounds specific to the Invision Cyber brand were identified in reviewed registers and company disclosures. No evidence of acquisition or insolvency was identified in reviewed primary sources.[4]
{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}
Market proposition and customer segments
π― Product positioning. Invision Cyber positions its product as cyber insurance "designed exclusively" for customers using Trend Micro's Vision One XDR and Cyber Risk Exposure Management (CREM), with underwriting informed by telemetry and proprietary algorithms.[2] Eligibility requires active use of Trend Vision One endpoint security/XDR and CREM as baseline requirements, along with MFA for remote access, an incident response plan, protected backups, and security monitoring.[14] Additional requirements in the Trend brochure include annual security awareness training and SOC/MDR language.[14]
π Geographic and limit scope. Product messaging targets Trend Micro's US customers, with underwriting conducted in the United Kingdom for US risks sourced through licensed US E&S brokers.[2] Maximum capacity is stated at up to USD 10 million.[2]
π Industry appetite. Invision publishes an industry list emphasizing broad appetite with explicit non-eligible categories, including adult entertainment, select aviation services, defined critical infrastructure (including electric transmission/distribution and certain pipeline and water supply categories), messaging platforms, online gambling, paper media publishing, political organizations, certain social media and internet publishing categories, and satellite telecommunications.[5] Supported sectors include healthcare, financial institutions, manufacturing, retail, and technology, with an explicit note that ESG principles may influence underwriting decisions.[5]
π Segment inference. The combination of required deployment of enterprise-grade security tooling, a telemetry-linked underwriting workflow, and a single primary specialist broker channel suggests a bias toward mid-market and lower enterprise insureds rather than micro-SMEs, based on public eligibility design and distribution architecture.[14]
{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}
Cyber insurance offering and coverage
π Policy form. The company markets an "Invision Insight Policy" listing typical coverages across first-party, third-party liability, and cyber crime categories.[15] Public disclosures state the business underwrites on behalf of various Lloyd's syndicates and is backed by three Lloyd's syndicates for this product.[5]
| Category | Coverage element | Source |
|---|---|---|
| First-party | Business interruption (and dependent business interruption) | [15] |
| First-party | Digital asset and data restoration | [15] |
| First-party | Cyber extortion | [15] |
| First-party | Bricking / device replacement (hardware failure) | [15] |
| First-party | Reputation management | [15] |
| First-party | Incident response services | [15] |
| First-party | eCrime / fraud and cryptojacking | [16] |
| Cyber crime | Funds transfer fraud | [15] |
| Cyber crime | Invoice manipulation | [15] |
| Cyber crime | Fraudulent instruction | [15] |
| Cyber crime | Service fraud | [15] |
| Cyber crime | Cryptojacking / utility fraud | [15] |
| Third-party liability | Network and information security liability | [15] |
| Third-party liability | Regulatory defense and penalties | [15] |
| Third-party liability | Media liability | [15] |
| Third-party liability | PCI fines and assessments | [15] |
| Third-party liability | Contingent bodily injury | [15] |
| Third-party liability | Privacy violations | [16] |
| Third-party liability | Vendor and service providers | [16] |
| Breach response | Forensic investigations | [16] |
| Breach response | System recovery and restoration | [16] |
| Breach response | Legal costs | [16] |
| Breach response | Credit monitoring / notifications | [16] |
| Breach response | PR / crisis management | [16] |
β οΈ Coverage limitations. Sources label these items as "typical coverages" and do not specify whether each is standard, optional, sub-limited, or subject to waiting periods.[15] The maximum limit is publicly stated at USD 10 million, with no public distinction between SME packaged forms and manuscript placements.[2]
{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}
Cybersecurity services and claims operations
π§ Pre-bind services. Invision Cyber's underwriting posture is explicitly tied to security telemetry from Trend Micro's platform and CREM, positioned as both a baseline requirement and a data feed for underwriting.[2] The company also markets "risk management offers" providing discounted access to tools and assessments designed to help organizations meet baseline standards, including discounts on Trend Vision One modules and services, and third-party risk-management services such as penetration testing and risk assessments.[17]
π‘ Continuous monitoring. Launch materials describe a custom integration to share summarized telemetry from Trend Vision One for risk assessment and an underwriting model that links real-time security posture to pricing.[2]
π₯ Incident response panel. The incident response protocol document identifies a US panel structure comprising DFIR partners (Trend Micro, S-RM, and N1 Discovery), recovery partners (Fenix24 and Beazley Security), and privacy counsel (Wilson Elser and Buchanan Ingersoll & Rooney).[18] Alternative vendors may be accommodated subject to due diligence, with prior written approval required before incurring expenses with non-panel providers.[18]
π Claims handling. Incidents are triaged through cyber services managers (CSM), with a hotline and always-on email monitoring. The protocol states that incidents are handled by cyber services managers at Beazley, referencing a claim volume of approximately 4,000 calls per year. The incident response strategy is positioned as "built into" the product and designed specifically around Trend Vision One environments, with curated partners familiar with the tooling.[18]
{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}
Distribution, geography, and partnerships
π€ Primary channel. Distribution is structured around Trend Micro customer eligibility, with the product positioned as cyber insurance "redefined for Trend Micro customers."[1] Placement occurs via specialist brokers, with "primary broker support" from Woodruff Sawyer.[1] The broker page includes named broker contacts (David Anderson and Bridget Choi) and emphasizes that access is "currently only available through our appointed brokers," with limited circumstances for alternative access.[19]
π Geographic footprint. The offering is explicitly oriented to US customers, with business sourced through US E&S brokers and executed from the United Kingdom under a Lloyd's-backed delegated authority structure.[5]
π¬ Technology partnership. The central strategic partnership is with Trend Micro Incorporated, positioned as enabling underwriting "from the inside out" by converting telemetry into underwriting signals through proprietary algorithms.[2] The company states it operates independently with no formal affiliation or financial relationship with Trend Micro.[2]
βοΈ Legal and risk-management partnerships. The public risk management page lists partnerships and discounted services from Wilson Elser, Buchanan Ingersoll & Rooney, N1 Discovery, and S-RM, with Trend Micro as the technology partner.[17]
{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}
Competitive positioning and outlook
ποΈ Capacity partners. Invision publicly names its capacity partners as Beazley, Munich Re, and Antares, described as three Lloyd's syndicates backing the product.[6] The Lloyd's coverholder posture implies use of delegated underwriting authority (binding authority) to enter insurance contracts on behalf of Lloyd's syndicates.[5]
β‘ Competitive differentiation. Relative to cyber insurtech peers such as Coalition, At-Bay, Cowbell, Resilience, and BOXX Insurance, Invision Cyber's differentiator is its hard coupling to a single cybersecurity ecosystem (Trend Vision One plus CREM) and disclosed underwriting reliance on telemetry, rather than a vendor-agnostic scanning posture.[2] This positions it as an "embedded cyber insurance" construct within a security OEM's installed base, backed by Lloyd's syndicate capacity. The model resembles an affinity distribution strategy where the cybersecurity vendor's customer base is the addressable market and the broker layer is narrowed to a primary specialist partner, structurally distinct from broader broker-agnostic MGAs and from full-stack carriers.[1]
π Strategic direction. The stated strategy is to "transform cyber insurance" by converting Trend Micro telemetry into underwriting signals through proprietary algorithms, enabling streamlined quoting and linking security posture to premium levels.[2]
β οΈ Risk factors. Key risk considerations include capacity dependency on a small set of named Lloyd's syndicate partners, creating concentrated counterparty and renewal risk at binder re-set.[2] The single-ecosystem distribution model, tightly bound to Trend Micro's installed base, concentrates growth and retention risk in one partner ecosystem.[1] The incident response protocol's emphasis on panel usage, with permissions required for non-panel vendors, introduces potential friction if an insured prefers alternative providers or if panel capacity is constrained during systemic events.[18] Targeting insureds on a common security platform may create portfolio correlation risk if a systemic vulnerability affects shared technology stacks.[1] The cross-border delegated authority structure, relying on US licensed brokers for UK-originated underwriting, faces evolving regulatory expectations around documentation, claims handling, and customer communications.[5]
{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}
Timeline of key events
| Date | Event |
|---|---|
| 8 January 2018 | Acies Management Holdings Limited incorporated in the United Kingdom.[10] |
| 9 July 2019 | Vector Investment Capital (Holdings) Limited notified as person with significant control of Acies Management Holdings Limited (75%+ control).[7] |
| 15 October 2024 | Vector Investment Capital (Holdings) Limited shown as previously named Meridian Group Holdings Limited until this date.[8] |
| 19 June 2025 | Invision Cyber site privacy policy references sharing information with capacity providers (Beazley, Munich Re, Antares) for reviewing and issuing insurance coverage.[20] |
| 15 September 2025 | Public launch of Invision Cyber with Trend Micro partnership; announced as a new cyber MGA and Lloyd's coverholder with capacity up to USD 10 million, backed by three Lloyd's syndicates, with distribution via a leading broking partner.[2] |
| September 2025 | Trend Micro brochure and incident response materials describe typical coverages, baseline requirements, and broker partner positioning (Woodruff Sawyer).[16] |
{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}
See also
{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}
References
- β 1.0 1.1 1.2 1.3 1.4 1.5 {{#invoke:citation/CS1|citation |CitationClass=web }}
- β 2.00 2.01 2.02 2.03 2.04 2.05 2.06 2.07 2.08 2.09 2.10 2.11 2.12 2.13 2.14 2.15 2.16 {{#invoke:citation/CS1|citation |CitationClass=web }}
- β {{#invoke:citation/CS1|citation |CitationClass=web }}
- β 4.0 4.1 {{#invoke:citation/CS1|citation |CitationClass=web }}
- β 5.00 5.01 5.02 5.03 5.04 5.05 5.06 5.07 5.08 5.09 {{#invoke:citation/CS1|citation |CitationClass=web }}
- β 6.0 6.1 6.2 {{#invoke:citation/CS1|citation |CitationClass=web }}
- β 7.0 7.1 7.2 7.3 {{#invoke:citation/CS1|citation |CitationClass=web }}
- β 8.0 8.1 {{#invoke:citation/CS1|citation |CitationClass=web }}
- β {{#invoke:citation/CS1|citation |CitationClass=web }}
- β 10.0 10.1 {{#invoke:citation/CS1|citation |CitationClass=web }}
- β {{#invoke:citation/CS1|citation |CitationClass=web }}
- β {{#invoke:citation/CS1|citation |CitationClass=web }}
- β {{#invoke:citation/CS1|citation |CitationClass=web }}
- β 14.0 14.1 14.2 {{#invoke:citation/CS1|citation |CitationClass=web }}
- β 15.00 15.01 15.02 15.03 15.04 15.05 15.06 15.07 15.08 15.09 15.10 15.11 15.12 15.13 15.14 15.15 15.16 15.17 {{#invoke:citation/CS1|citation |CitationClass=web }}
- β 16.0 16.1 16.2 16.3 16.4 16.5 16.6 16.7 16.8 {{#invoke:citation/CS1|citation |CitationClass=web }}
- β 17.0 17.1 {{#invoke:citation/CS1|citation |CitationClass=web }}
- β 18.0 18.1 18.2 18.3 {{#invoke:citation/CS1|citation |CitationClass=web }}
- β {{#invoke:citation/CS1|citation |CitationClass=web }}
- β {{#invoke:citation/CS1|citation |CitationClass=web }}
{{#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Reflist with unknown parameter "_VALUE_"|ignoreblank=y| 1 | colwidth | group | liststyle | refs }}