Overview
Understanding and improving your security posture is critical in today's evolving threat landscape. Cyber Health Rating in Coalition Control® is your security fitness tracker, providing real-time insights about your organization's security health and clear guidance on strengthening it.
Note: The Cyber Health Rating replaces the previous Security Risk Score, providing a more comprehensive view of your organization's security posture. Through continuous monitoring and active risk management, Coalition policyholders can experience up to 64% fewer claims than industry averages.
Key Components of Your Security Profile
Your Coalition Security Profile consists of the following key components that work together to give you a complete picture of your cyber risk:
-
Cyber Health Rating: A dynamic score that reflects your external cybersecurity risks and how your business responds to threats. This score measures:
- Your current security posture
- Response to emerging threats
- Implementation of security controls
- Overall cyber resilience
-
Inherent Risk Rating: Evaluates baseline risks specific to your business context that exist regardless of security controls, including:
- Industry vertical and associated risks
- Company size and revenue
- Amount of sensitive data handled
- Employee count
- Geographic presence
-
Your Action Plan: Provides prioritized, actionable steps to improve your security posture, including:
- Critical vulnerability remediation steps
- System update recommendations
- Security control implementation guidance
- Estimated impact of each action on your score
- Security Findings Summary: Security findings are vulnerabilities that could be exploited by a threat actor to gain unauthorized access and do harm.
- Attack Surface Summary: The Attack Surface is the parts of your digital assets (devices, network, and technologies) that threat actors can target.
Understanding Your Cyber Health Rating
Score Calculation
Your Cyber Health Rating is calculated on a scale of 0-100, with higher scores indicating stronger security posture. The score updates continuously based on three key factors:
- Attack Surface Management: Coalition Control monitors your external attack surface and how you handle critical security findings. Taking action on Zero-Day Alerts improves your score, while unresolved vulnerabilities negatively impact it. For example, addressing exposed RDP services could significantly boost your score and reduce ransomware risk.
- Patching Cadence: This measures how quickly and consistently you update systems with security patches. Regular updates demonstrate proactive risk management and directly improve your score. Coalition Control tracks your patching history to assess this component.
- Threat Intelligence: This incorporates data from Coalition's Security Research team, including first—and third-party threat data and credential leak monitoring. It provides context about emerging threats that could affect your organization.
Factors That Impact Your Score
Positive Impacts:
- Swift vulnerability resolution: Taking immediate action on security alerts demonstrates strong security practices and significantly improves your score.
- Consistent system updates: Maintaining regular patch schedules shows proactive risk management and helps prevent security gaps.
- Security control adoption: Implementing recommended tools like Coalition Security Awareness Training, Coalition Managed Detection and Response, or enhanced email security strengthens your overall posture.
- Integrated security monitoring: Connecting Coalition Control with systems like Microsoft 365 or Google Workspace enables better security visibility.
Negative Impacts:
- Exposed login panels: Organizations with exposed login panels are 3.1 times more likely to experience cyber incidents.
- Unsecured remote access: Companies using exposed remote access technologies face 2.5 times higher risk of attacks.
- Security contingencies: Having one or more security contingencies makes organizations 2.53 times more likely to experience claims.
- Delayed remediation: Postponing security updates or leaving vulnerabilities unaddressed increases risk exposure.
Taking Action to Improve Your Score
Using Your Action Plan
- Log in to Coalition Control
- Review your current Cyber Health Rating
- Access your personalized Action Plan, which prioritizes:
- Zero-day vulnerability remediation
- Password leak resolution
- System updates
- Security control implementation
- Security awareness training needs
- Integration opportunities
Best Practices for Score Improvement
- Monitor Continuously: Check Coalition Control regularly for new alerts or recommendations
- Act Swiftly: Address critical vulnerabilities as soon as they're identified
- Implement Controls: Add recommended security measures like MDR and email protection
- Stay Updated: Maintain consistent patching schedules
- Enable Integrations: Connect available security tools and monitoring systems
Getting Help
If you need assistance with your Cyber Health Rating:
- Contact Coalition Support through your Control dashboard
- Consult with your IT team or security provider
- Review Coalition's security best practices documentation
- Submit a request here