Reduction in cyber insurance premium
Scroll down
Reviewed the company’s risk management profile to determine financing options consistent with the client’s risk appetite.
A midsize financial services company’s sensitive data and business operations were at risk due to a surge in cyber threats, including ransomware and credential theft. The company’s existing cybersecurity measures had not kept pace with evolving risks, resulting in an increased likelihood of a significant cyber breach and insurance premiums more than 15% ($10,000+) above the marketplace norms.
USI’s cyber risk specialists helped the organization align its risk management strategy with business goals by implementing a comprehensive, multi-layered approach to cyber defense. This improved the firm’s risk management and insurability.
Background
Bottom-Line Impact
USI’s multi-layered cyber defense strategy helped the company lower its cyber insurance premium by more than 15%. By implementing key controls, the organization significantly reduced its risk of a breach and financial exposure, securing its lowest premium in three years while also expanding coverage.
Evaluated the benefits and considerations associated with each risk financing method.
01
02
03
Presented options clearly outlining the total cost of risk (TCOR) for the company’s existing guaranteed-cost program, as well as two alternatives — a large deductible plan with a deductible aggregate, and one without an aggregate.
01
02
03
Property & casualty case study
How USI helped a financial company reduce premiums and exposures by improving cyber controls.
Demonstrated how proper loss control could reduce claims frequency and costs, positively impacting deductible expenses.
01
02
03
04
04
04
Read our article to discover how multifactor authentication and layered cyber strategies can protect your organization and lower costs.�
Connect with one of USI's experts to set up a personalized consultation.
Ready to strengthen your cyber defenses and reduce risks?
Read Article
Contact Us
Potential breach cost mitigation
$1 million+
A deductible aggregate is a feature where the total deductible amount is capped across all claims during a policy period
>15%
With cyber hygiene now aligned to industry best practices and USI’s cyber risk classification framework, the company is well-positioned for long-term resilience, regulatory compliance, and improved insurability.
01
02
03
04
01
Select a strategy below
Key Controls Implemented
EDR solutions were deployed across all endpoints and monitored by a Managed Detection and Response (MDR) service.
Endpoint Detection and Response
The organization minimized unnecessary data retention, anonymized sensitive data, and restricted access based on job function.
Data Management
A comprehensive inventory of all hardware, software, and data assets was established, with controls assigned based on risk.
Asset Inventory and Controls
The company adopted a documented and enforced patch management schedule for all critical systems.
Patching Cadence
MFA was deployed enterprise-wide, covering all privileged accounts, remote access, and critical business applications.
Multifactor Authentication
Multifactor �Authentication
Patching Cadence
Asset Inventory and Controls
Data Management
Endpoint Detection and Response
15% Premium Reduction
usi.com
This material is for informational purposes and is not intended to be exhaustive nor should any discussions or opinions be construed as legal advice. Contact your broker for insurance advice, tax professional for tax advice, or legal counsel for legal advice regarding your particular situation. USI is not responsible for the content of the information provided or for consequences of any actions taken based on the information provided. © 2025 USI Insurance Services. All rights reserved.
Topic 01 Title
Commodo cubilia, donec inventore, at beatae ides. Mollis blandit aliquip leo auctor, nec, provident vehicula vulputate nostra, optio, sem quisque consequatur porro! Facilis, saepe cupidatat sunt proident sapien voluptatum voluptates ante mattis, eu. Aliquid tempus voluptas, minima ullam sit.
Multifactor Authentication
MFA was deployed enterprise-wide, covering all privileged accounts, remote access, and critical business applications.
Patching Cadence
The company adopted a documented and enforced patch management schedule for all critical systems.
Asset Inventory and Controls
A comprehensive inventory of all hardware, software, and data assets was established, with controls assigned based on risk.
Data Management
The organization minimized unnecessary data retention, anonymized sensitive data, and restricted access based on job function.