Qualys, Inc. and Converge have launched a joint offering focused on cyber insurance. The initiative aims to lower cyber insurance premiums for organizations that can prove strong cybersecurity hygiene through Enterprise TruRisk Management.

The partnership streamlines cyber insurance applications. It also improves risk accuracy for insurers. In addition, it reduces reliance on manual questionnaires that are often inconsistent and time consuming.

Organizations using Qualys Enterprise TruRisk Management (ETM) can now support underwriting with verified security data. As a result, they may qualify for reduced cyber insurance premiums from Converge based on demonstrated risk reduction.

The solution introduces the Qualys Converge Connect Insurance Report, CCIR. ETM generates this report using live security data. It validates vulnerability management, patch management, and endpoint detection controls in a standardized format.

Furthermore, the system feeds ETM data directly into the CCIR. This removes manual reporting steps. It also reduces the risk of inaccurate self reporting. In addition, it provides insurers with clearer visibility into enterprise security posture.

The report includes measurable indicators. These include remediation speed, compliance levels, and asset coverage. Therefore, underwriters can evaluate real risk instead of relying on averages or static inputs.

“Cyber risk has historically been priced on snapshots and self-reported answers, leaving real exposure invisible between renewals,” said Tom Kang, CEO of Converge. “With verified data, we will be able to underwrite to a company’s live security posture and provide policyholders who do the hard work of reducing risk to see the benefits.”

“Cyber insurance is key to the overall risk management strategy, but there has to be an easier way to correlate the strength of an organization’s cyber posture with what they should pay in insurance,” said Sumedh Thakar, president and CEO of Qualys. “That’s why we created ETM to provide stakeholders with an accurate picture of their true risk, enabling better business outcomes like cyber insurance savings, and a greater incentive to reduce their cyber risk.”

The CCIR supports multiple Qualys solutions. These include Enterprise TruRisk Management, Vulnerability Management, Detection and Response (VMDR), TruRisk Eliminate, and Endpoint Detection and Response (EDR).

The report is generated in real time. It remains valid for 30 days. This ensures insurers always work with recent and relevant data.

Availability is immediate through ETM. Customers can access the offering at qualys.com/lp/converge.

Overall, the partnership shifts cyber insurance toward a data driven model. It links verified security posture directly to cyber insurance pricing and helps organizations potentially reduce cyber insurance costs.

Related post

View all