Liongard and Cybersecurity Insurance

The purpose of this document is to understand cyber insurance questions that the information on the Cyber Insurance Assessment Report helps to answer.

Liongard mitigates IT operational risks and cybersecurity risks for IT service providers and IT departments. Using Liongard's Cyber Insurance Assessment default report template, you can easily create a report that answers the most critical questions asked by most cyber insurance providers.

Below is a list of the cyber insurance questions that the information on the Cyber Insurance Assessment report template helps answer:

Question

Report Section

Metric

What is the Applicant's primary website?

External DNS Records

Primary Domain Name

Does the Applicant encrypt all sensitive information at rest?

macOS Data Workstation Data
Server Data

macOS: File Vault Encryption Status Windows Workstation: Bitlocker Status
Windows Server: Bitlocker Status

Does the Applicant allow remote access to their network?

macOS Data Workstation Data
Server Data

macOS: Remote Management Status, Remote Login Status Windows Workstation: Is RDP Enabled
Windows Server: RDP Allowed

Does the Applicant require multi-factor authentication for email access?

Email Domains, MFA, Defender

Microsoft 365: List of Users Without MFA Enabled

Are these backups stored offline (disconnected from the Applicant's network) or with a cloud service provider?

Backups - Datto BCD
Acronis

Datto BCDR: Devices With Cloud Storage
Acronis: List of Machines with Backup Enabled
Acronis: List of Machines Without Backup Enabled

Are your backups less than a month old?

Backups - Datto
N-Able Backup
Storagecraft SPX
Acronis

Datto BCDR: Backups Older Than One Month
N-Able Backup: Servers With No Backup In 30 Days Or More
Storagecraft: Last Successful Backup
Acronis: List of Machines Successfully Backed Up In Last 30 Days
Acronis: List of Machines NOT Successfully Backed Up In Last 30 Days

Email Domains, MFA, Defender

Emails, Domains, MFA, Defender

DNS MX Record List

Has the Applicant tested the successful restoration and recovery of key server configurations and data from backups in the last 6 months?

Backups - Datto BCDR

Datto BCDR: Active Agent Backups Without Verification

Are all internet-accessible systems segregated from the Applicant's trusted network?

Firewalls- Cisco Meraki
Firewalls - Fortinet
Firewalls - SonicWall
Firewalls - WatchGuard

Cisco Meraki: L3 Policy Summary
Fortinet Fortigate: Firewall Policy Summary
SonicWall: List of Access Rules
SonicWall: List of NAT policies
WatchGuard: Access Rules Summary

Does the Applicant protect all of their devices with anti-virus, anti-malware, and/or endpoint protection software?

macOS Data Workstation Data
Server Data

macOS: Antivirus on System Windows Workstation: Antivirus on System, Domain Firewall Enabled, Public Firewall Enabled, Private Firewall Enabled
Windows Server: Antivirus On Server

Does the Applicant use the Microsoft Defender for Office 365 add-on?

Emails, Domains, MFA, Defender

Microsoft 365: Defender Policies And Their Statuses

Please indicate if any of the following email security softwares are used:

External DNS Records

DNS MX Record List

Does the Applicant have any end of life or end of support software on their network?

Workstation Data
Server Data

Windows Workstation: List of Installed Software, Windows Software List

Windows Server: List of Installed Software, Windows Software List

Does the Applicant use firewall & anti-virus software to protect their computers?

macOS Data Workstation Data
Server Data

macOS: Firewall Enabled Status, Antivirus on System Windows Workstation: Antivirus on System, Domain Firewall Enabled, Public Firewall Enabled, Private Firewall Enabled
Windows Server: Antivirus On Server

What Anti-Virus provider does the applicant use?

macOS Data Workstation Data
Server Data

Windows Workstation: Antivirus on System, Domain Firewall Enabled, Public Firewall Enabled, Private Firewall Enabled
Windows Server: Antivirus On Server

What Endpoint Detection and Response (EDR) provider does the applicant use?

macOS Data Workstation Data
Server Data

Antivirus on System
Domain Firewall Enabled
Public Firewall Enabled
Private Firewall Enabled