At-Bay Stance™ delivers mission-critical security capabilities to SMBs with a single managed risk solution; helps reduce frequency and severity of cyber attacks more effectively than point solution
- InsurSec addresses major security technology and skills access gap among SMBs.
- First InsurSec solution to market offers holistic approach to security and risk management all through single insurance policy.
- InsurSec market expected to reach $80B in 2028, with an average annual growth rate of 22%.
San Francisco, CA (Apr. 20, 2023) – At-Bay, the insurance provider for the digital age, is pleased to announce the launch of At-Bay Stance, the world’s first InsurSec solution designed to help small-to-mid-sized businesses (SMBs) close their persistent security technology and skills access gap, all through their cyber insurance policy. With 98% of cyber insurance claims in the past five years coming from SMBs with revenue under $2B, according to a recent report from NetDiligence,[1] providing an integrated solution to help businesses manage cyber risk is now more critical than ever. At-Bay Stance brings together best-in-class technology solutions and on-demand SecOps experts to help improve the security posture of every policyholder, regardless of their industry, budget, or technical expertise.
“SMB security is broken,” said Rotem Iram, CEO and Co-Founder of At-Bay. “A fragile technology stack and complex security tools require budgets and expertise that small businesses simply cannot afford. By combining insurance with security into InsurSec, At-Bay brings the incentives, scale, and expertise needed to bridge the SMB cyber security gap.”
At-Bay has already reduced the number of ransomware attacks against its 30,000 policyholders by as much as 80% compared to the industry average[2] by using proprietary security scans and active risk monitoring. However, simply scanning a company’s external attack surface is no longer enough to tackle today’s complex threat landscape. At-Bay Stance is the only managed risk solution that combines insurance and security to close the SMB security gap by centralizing and prioritizing risks for SMBs, and providing expert support to mitigate threats.
InsurSec market to reach $80B by 2028
InsurSec is a force multiplier: an end-to-end approach to protecting small businesses from cyber threats by bringing insurance and security together.
With demand for both insurance coverage and security products increasing among SMBs, the InsurSec market is expected to experience rapid growth in the next five years, reaching $80B in 2028, at an average annual compound growth rate of 22%.[3]
Effective InsurSec solutions successfully integrate:
- Prevention: Critical resources to help strengthen the security of every company environment, identifying gaps in security and risk mitigation capabilities, prioritizing issues based on real-world knowledge of actual threats, and supporting remediation by providing access to expertise.
- Detection: Capabilities to monitor, detect, and respond to threats; tailored to the company’s risk profile and technical environment.
- Response & Recovery: Access to response and recovery experts to help get businesses back on their feet in the event of an incident.
- Risk Intelligence Engine: Prevention, Detection, and Response & Recovery capabilities must be underpinned by a closed-loop data intelligence system that learns and improves loss outcomes across security, fraud, financial, and risk factors. Optimized for time and better risk mitigation decisions for every business, the solution should aggregate data across claims and risks to quickly identify emerging threats.
- Single Provider: The solution needs to be delivered by an insurance company that can provide the critical protection from financial and reputational loss that all SMBs face today.
“The world’s largest companies dedicate countless hours and resources to building their security stacks and managing their risk across dozens of disparate tools and point solutions. On a limited budget, figuring out where to even start is a huge undertaking for SMBs, which prevents many of them from addressing security risk quickly,” said Thom Dekens, Chief Business Officer and GM of At-Bay Security. “Helping SMBs improve their security posture is something that an insurance provider can do better and more effectively than a security vendor. That’s why InsurSec makes sense.”
The world’s first InsurSec solution, At-Bay Stance
At-Bay Stance is a managed risk solution that reduces cyber risk by both centralizing and prioritizing risks for businesses and providing support to mitigate them, all through a single cyber insurance policy.
- At-Bay Stance Exposure Manager.[4] A purpose-built software platform that centralizes threat and vulnerability data by integrating existing security controls with At-Bay’s external scans. Similar platforms can cost businesses over $5,000 / year.5
- At-Bay Stance Managed Security.[5] In-house experts who provide intelligence-powered recommendations to businesses on what to do to stop attacks before they happen. This team offers “on-demand” services to help businesses with remediation, in addition to proactively sharing security recommendations and insights. This is the force multiplier that helps businesses build the right posture.
- At-Bay Response & Recovery.[6] In-house incident response who can be immediately deployed to understand the root cause of the incident, evaluate the impact, and develop the appropriate plan to get customers back on their feet in the event of a covered incident.
- At-Bay Security Partner Network. Discounts on the top-performing third-party security products and solutions with a strong track record of improving security, according to our claims research.
At-Bay Stance will be available to At-Bay customers purchasing a new Cyber or Tech E&O excess or surplus policy starting May 1, or renewing policies as of August 1. Businesses not currently insured by At-Bay who are interested in getting a quote that includes At-Bay Stance can do so by contacting their broker for more information.
Methodology
At-Bay’s study, collected over a four-year period, analyzed incident samples from around 40,000 small to medium-sized businesses in order to provide a ranked, statistically significant list of email security providers based on frequency of incidents. As part of its study, At-Bay monitored any email-related incident claims, as well as claims in which email was attributed as a factor in any manner between mid-2018 and May 2022.
Notes
1. NetDiligence 2022 Claims Study. Report based upon the summary statistical analysis of almost 7,500 cyber claims for incidents that occurred during the five-year period 2017–2021.
2. Frequency Based on Primary and Excess Cyber and Tech Errors & Omissions losses reported and exposure earned through 9/30/2022, evaluated as of 10/1/2022, and 2020-2021 industry analysis.
3. The InsurSec market estimate was calculated by taking each of the major product- and service-related components that an InsurSec solution will provide, and determining what the estimated market value and growth rate is of each individual product/service category per adoption among the small and mid-sized business market segment specifically. The categories included: Cyber Insurance, Endpoint Detection and Response, Managed Detection and Response, Vulnerability Management, Extended Detection and Response, Digital Forensics and Incident Response.
4. Estimated value of At-Bay’s Stance Exposure Manager based on estimated annual cost of a comparable solution for small- and medium-sized businesses. At-Bay Stance Exposure Manager should not be considered a replacement for a comprehensive exposure management solution or a standalone cyber security solution. Please consult with an IT professional for additional guidance.
5. At-Bay Stance Exposure Manager and Managed Security are only available to At-Bay policyholders who have purchased Embedded Security, as shown in policy declarations. Please refer to your policy.
6. The Response & Recovery team is an affiliate of At-Bay, Inc. As with all panel vendors, you must follow the requirements and procedures set forth in your policy.
About At-Bay
At-Bay is the InsurSec provider for the digital age. By combining world-class technology with industry-leading insurance expertise, At-Bay was designed from the ground up to empower businesses to thrive in the digital world. At-Bay is backed by Acrew Capital, Glilot Capital, the HSB fund of Munich Re Ventures, Icon Ventures, ION Crossover Partners, Khosla Ventures, Lightspeed Venture Partners, M12, entrepreneur Shlomo Kramer, and Qumra Capital. For more information, please visit www.at-bay.com.
Source: At-Bay
Tags: At-Bay, cyber attacks, Cyber Insurance, cyber risk, cyber security, industry first, launch, small business, United States (USA)