Specialist cyber advisory services for the insurance market
Manage cyber risk across your book and access immediate, coordinated cyber incident response
We can support you through the entire lifecycle of a policy with solutions built to reduce the complexities associated with cyber insurance.
Our products convey risk and drive sales, assess cyber risk management, complete proposal forms, and help you determine premiums. We also provide advisory services to remediate risk, and a team of specialists to respond to cyber incidents when they occur. STORM offers a complete spectrum of products and services to complement the lifecycle of a cyber policy.
Cyber insurance & broker partners
How we work
STORM works with cyber insurers and brokers to reduce the complexity of cyber coverage, providing solutions that enable you to control client risk, and the resources to respond to incidents when they occur.
Cyber incident response
Need immediate support?
If you or your client have suffered an attack, reduce the impact with immediate and effective digital investigations and coordinated response.
We provide support for victims of data breaches, phishing scams, malicious software, business email compromise, fraud, ransomware, and all other cybercrimes. We assist clients of every size and any industry sector by providing a rapid response, enabling optimal recovery to business as usual.
Or call: +44 (0)203 693 7480
About STORM Guidance
STORM: Strategic, Tactical & Operational Risk Management
STORM Guidance is a trusted provider of specialist tools and advisory services developed to reduce the challenges faced by cyber insurance underwriters, brokers, and their customers. We also provide our services directly to businesses of any size, regardless of insurance.
STORM was founded in 2014 when CEO Neil Hare-Brown, saw an opportunity to help victims of cybercrime by providing services to cyber insurance markets, supporting them with the management of client risk, and providing an effective response to cyber incidents. Our team includes the best cyber professionals in digital investigation, incident coordination, risk management, cyber consultancy, banking security, industrial control systems, IT forensics, and law enforcement. Together, we have helped thousands of clients recover from all aspects of cybercrime.
STORM Guidance’s mantra is: Assess, Plan, and Respond. It’s what we do.
Service - Ransomware incident response and threat actor engagement
Help your clients respond, investigate and recover from ransomware incidents
If you or your client have suffered a ransomware incident, we are on hand to support with digital investigation, threat actor engagement, system recovery, data analysis and retrieval.
You can enhance your client services by adding advanced ransomware response support, helping victims to recover following an attack. Our team of specialists are accessible 24/7 to help you or your clients restore their systems and recover data, reducing the stress associated with ransomware extortion. We help our clients by alleviating pressure, facilitating all communications and negotiations with the attackers, and providing the best chance of recovery. As part of our service, we offer trauma counselling for victims of cybercrime.
24/7 coordinated investigative and restorative response, procuring decryption keys and ensuring their authenticity.
Threat actor engagement
Former Law Enforcement Agent extortion negotiators, formulate & execute threat actor engagement, driving optimum outcomes.
Facilitation of cryptocurrency payments using blockchain analysis & tracing. Complete financial accounting & interaction with insurers.
Legal, regulatory, public relations, & crisis support with compassion & discretion. Trauma counselling for victims of crime.
The safety and security of private and sensitive data is high on all businesses agendas. Aviva provides support to customers to understand their cyber exposures and working with STORM, who are experts in cyber risk and analysis, we are able to deliver risk insights and cyber security solutions to help protect our customers and their businesses.
Justin Linney, Head of Risk Management - Aviva Insurance
Product - Cyber insurance risk assessment
Determine and improve cyber risk management maturity
Simplify and improve your understanding of client risk with Cyber3, providing a unique, jargon-free dashboard that details insights into policyholder Cyber Risk Management Maturity (CRMM), and generating proposal forms to reduce broker workload.
Derived from analysing a range of different insurer proposal forms, combined with our firsthand experience of cyber claims, our comprehensive assessment gives you a precise analysis of risk and insurability, helping your existing or prospective clients understand the need for better cybersecurity.
90-minute online assessment with a cybersecurity expert, identifying key risk indicators & remediation strategies for enhanced security controls. ISO 9001 / 14001 / 27001, PCI DSS, NIST, ENISA compliant.
Cyber maturity scoring
Comprehensive review delivering a dashboard-style presentation & custom-written report, detailing a straightforward 1-5 score in five areas of Cyber Risk Management Maturity (CRMM).
Client remediation plan
Results delivered with remediation report containing opinion statement, prioritised improvement action plan, & digital asset register. Improvements prioritised into checklist to improve CRMM.
We've been working with STORM Guidance for some time, utilising their services and expertise in the management of risk across our client book. STORM's comprehensive cybersecurity assessment supports our risk portfolio, playing a key role in the success of our cyber centre of excellence, and risk solutions.
Henry Warner, Divisional Director - Cyber, Ed.
Product - Cybersecurity exposure scan
Convey client risk with an Attacker's Eye View™ of their digital estate
Work with your policyholders to understand their organisation's online vulnerabilities from the perspective of an attacker, with an affordable outside-in analysis developed to convey their online risk.
The CyberProfiler scan reviews an organisation's entire online presence, detailing active vulnerabilities and proactive risk mitigation strategies in a detailed report and dashboard.
Convey client risk
CyberProfiler reviews client's internet-facing digital estate, scanning for vulnerable technologies, configurations, user accounts, malicious domains, third-party links, & other sensitive details.
Improve policy sales
Accelerate cyber insurance sales with tools designed to convey client risk. Provide key insights for underwriters & understand vulnerabilities as part of the underwriting process.
Mitigate active risks
Actively assist clients with a CyberProfiler scan, detecting vulnerabilities as they arise, ensuring they remain one step ahead of threat actors, whilst meeting the latest security standards.
This non-invasive Cyber Profiling service can provide businesses with insight into the potential exposures that cybercriminals can exploit, and empowerment to take practical steps to remediate risks. We are confident our customers will find this service complements their existing cybersecurity services and contributes to strengthening their cyber resilience.
Jaini Gudhka, Senior Risk Manager - QBE