Overview
Understanding and improving your security posture is critical in today's evolving threat landscape. Cyber Health Rating in Coalition Control is your security fitness tracker, providing real-time insights about your organization's security health and clear guidance on strengthening it. To learn about it, view this help article.
In addition to your overall security profile summary and details in Coalition Control, each new and renewal quote includes a personalized Cyber Risk Assessment (CRA) report. As an existing customer, you can generate the CRA from the Coalition Control UI by clicking on Download Report, which is right from the Your Security Profile dashboard.
Note: The Cyber Health Rating replaces the previous Security Risk Score, providing meaningful security insights to help you make informed cybersecurity and insurability decisions. Through continuous monitoring and active risk management, Coalition policyholders can experience up to 64% fewer claims than industry averages.
Understanding Your Cyber Risk Assessment Report
The Coalition Cyber Risk Assessment (CRA) provides a comprehensive view of your organization's security posture, potential risk exposure, and factors that may impact insurability. The Risk Summary page now features several key components:
Cyber Health Rating Display
Your Cyber Health Rating is calculated based on the security findings identified by control and your attestation to cybersecurity controls in the security checklist. Displaying the following key metrics:
- A numerical score out of 100 points with a corresponding rating (Poor, Fair, Good, Great)
- Visual gauge showing where your score falls on the rating scale
- Explanation of how the rating reflects your organization's cybersecurity posture
- Number of critical security findings that require attention
Key Takeaways:
Resolving cyber risks increases the overall health score and decreases the likelihood of a cyber incident, insurance contingency, or renewal blocker.
Inherent Risk Rating Section
Inherent risks in cybersecurity are the risks that naturally exist within an organization's operations, technology, or industry before implementing any controls or mitigation measures. Your Inherent Risk Rating is displayed with key metrics:
- Overall rating (Poor, Fair, Good, Great)
- Breakdown of risk factors including:
- Revenue range
- PHI/PCI/PII records count
- Employee count
- Industry classification
- Incident likelihood comparison to average Coalition-insured organizations
Key Takeaways:
Inherent risks are often those that cannot be mitigated or avoided. Knowing where you rank among peers and understanding inherent risks better helps define and prioritize areas of your business operations that need the most tailored cybersecurity measures.
Estimated Loss Projections
The CRA includes detailed financial projections:
- Estimated losses for different types of incidents:
- Composite loss estimates
- Ransomware scenarios
- Funds Transfer Fraud potential
- Data Breach impacts
- Loss estimates are shown in three categories:
- Median loss amount
- 1 in 10 years scenario
- 1 in 100 years scenario
Peer Comparison Data
- Aggregate limits purchased by peer organizations
- Breakdown by coverage amount ranges
- Percentage distribution of peer coverage choices
The Risk Summary page provides actionable insights that help you understand your organization's risk profile and make informed decisions about security improvements and coverage needs.
Additional Resources