Cyber insurance renewals now require proof over promises, says Tide Foundation co-founder
By
Help Net Security
Summary
This article covers a video interview with Michael Loewy, co-founder of Tide Foundation, discussing how cyber insurance renewals are becoming more demanding. Insurers now require more questionnaires, evidence, and attestations, moving from trusting answers to verifying them. Loewy argues that compliance does not equal security, as declared controls can be partial, misconfigured, or bypassed. He emphasizes that proof beats paperwork in areas like MFA that cannot be sidestepped, backups independent from production, and standing authentication practices.
Source
Key quotes
· 3 pulledInsurers want more questionnaires, more evidence, and more attestations, because the market is moving from trusting your answers to verifying them.
Compliance is not security, and a control which is declared can be partial, misconfigured, or bypassed when it matters.
Proof beats paperwork: MFA that cannot be sidestepped, backups that don't share fate with production, and standing auth.
You might also wanna read
The Top Three Requirements For Cyber Insurance Renewals
Ethical Hackers & Insurance Brokers: An Unlikely Pair – Part 2
Ethical Hackers & Insurance Brokers: An Unlikely Pair
Security Researcher Discovers Critical Data Vulnerability in Sports Insurer Portal, Faces Legal Threats Instead of Cooperation
A diving instructor and platform engineer discovers a critical security vulnerability in a sports insurer's portal during a dive trip, expos
Why the CyberCorps SFS Program Must Evolve to Counter AI-Powered Cyber Threats
The article discusses the urgent need to adapt the CyberCorps Scholarship for Service (SFS) program to address emerging AI-powered cyber thr

Comments
Sign in to join the conversation.
No comments yet. Be the first.