Coalition Cyber Security

Additional features

Active Cyber Insurance Policy

Offers comprehensive cyber insurance coverage that integrates proactive cybersecurity measures to protect against various digital risks.

Active Risk Assessment (via Active Data Graph)

Uses AI to gather and analyze vast amounts of data from the public and dark web to provide a real-time, comprehensive view of an organization's cyber risk posture, informing both underwriting and risk reduction efforts.

Active Protection (via Coalition Control®)

Provides an industry-leading risk management platform that helps organizations actively detect, assess, and mitigate cyber threats before they can escalate into full-blown attacks.

Active Response (via Coalition Incident Response - CIR)

Offers immediate access to expert incident response and claims teams who work to quickly stabilize, investigate, and restore business operations after a cyber incident, often with no additional cost to policyholders.

24/7 Continuous Monitoring

Continuously scans over 4.5 billion IP addresses monthly for vulnerabilities and cyber exposures, providing personalized, actionable alerts.

Cyber Health Rating

Provides real-time insights into an organization's security health, factoring in attack surface, patching cadence, and threat intelligence.

On-Demand Rescans

Allows policyholders to request immediate rescans of specific vulnerabilities to confirm remediation.

Vulnerability Attestation

Enables users to submit evidence of completed remediation steps to improve their cyber risk score.

CoalitionAI Security Copilot

Leverages AI to assist users in understanding vulnerabilities and generating appropriate remediation strategies.

Security Checklist

Offers a step-by-step guide to help organizations establish and improve essential security controls.

Lookalike Domain Management

Detects and alerts organizations about domains created to impersonate them (e.g., for phishing) and facilitates their takedown.

Dark Web Monitoring

Continuously scans the dark web for exposed organizational credentials, alerting affected parties.

Supplier/Vendor Monitoring

Extends threat monitoring to third-party suppliers and vendors to identify potential supply chain risks.

Vanishing Retention

A unique policy feature where retention (deductible) can be reduced to zero for organizations that remain claim-free over time.

Reduced Retention for Early FTF Reporting

Offers a reduction in retention if Funds Transfer Fraud (FTF) incidents are reported within 72 hours.

Affirmative AI Coverage

Explicitly covers security incidents resulting from AI-related failures, including deepfake-enabled fraudulent transfers.

Any One Claim Coverage

Resets the full policy limit for each distinct cyber incident that occurs during the policy period, providing extended protection.

Streamlined Policy Structure

Incorporates 11 previously endorsed coverages directly into the base policy for simpler, more comprehensive coverage.

Separate Limit for Breach Response

Ensures that the costs of breach response services do not deplete the main policy limits available for other coverages.

Pay-on-Behalf for Cyber Extortion

Minimizes immediate out-of-pocket expenses for ransomware payments by handling them directly.

Recovery for Funds Transfer Fraud

Actively works with partners to attempt to claw back stolen funds in cases of FTF.

Lost Income for Business Interruption

Covers financial losses due to cyber attacks that disrupt business operations and cause downtime.

Third-Party Liability Coverage

Protects against costs arising from third-party lawsuits, including defense costs and damages related to security failures, data breaches, privacy violations, and regulatory fines.

Physical Cyber Attacks Coverage

Covers losses from bodily injury or property damage/impairment directly resulting from a cyber security failure.

Fraudulent Charges Coverage

Covers additional expenses incurred from cloud or telephony providers due to fraudulent charges related to a cyber incident.

Phishing Impersonation Coverage

Covers costs incurred by customers who are victims of phishing attacks impersonating the policyholder's organization.

Crisis Management & Public Relations Coverage

Covers expenses for expert crisis management and public relations services following an incident.

Digital Asset Restoration

Covers the costs to replace, restore, or recreate digital assets (data, software) that are damaged or lost due to a cyber incident.

Computer Replacement and Bricking

Covers the costs to replace or repair computer systems that are permanently damaged or rendered inoperable by malware.

Reputational Harm Loss

Covers financial losses directly resulting from adverse publicity or reputational damage caused by a security incident.

Court Attendance Coverage

Provides coverage for costs associated with attending court as a direct result of a covered cyber incident.

Pre-Breach Support

Offers support services like incident response planning and tabletop exercises to help organizations prepare for potential cyberattacks.

24/7 Incident Reporting

Allows policyholders to report incidents around the clock with a guarantee of immediate response (within 5 minutes).

Expert Panel Access

Provides access to a network of vetted, third-party security firms for specialized incident response services.

Legal Counsel Access

Offers free initial legal counsel (typically two hours) to guide policyholders during an incident.

Post-Incident Monitoring

Includes at least 30 days of post-incident monitoring to ensure no lingering threats after an attack.

Vendor Savings

Provides exclusive discounts and savings from leading cybersecurity vendors for policyholders.

Cybersecurity Training and Awareness

Offers resources and potentially training to improve organizational cyber hygiene.

MDR (Managed Detection & Response) Add-on

Option for continuous threat detection and response managed by Coalition experts.

IR Tabletop Exercises Add-on

Option to conduct simulated incident response scenarios to test preparedness.

Customized Security Assessments Add-on

Option for tailored security assessments to identify specific vulnerabilities.