What your next cyber insurance renewal will demand

In this Help Net Security video, Michael Loewy, co-founder, Tide Foundation, explains how cyber insurance is rewriting security programs at renewal time.

Insurers want more questionnaires, more evidence, and more attestations, because the market is moving from trusting your answers to verifying them. Loewy argues that compliance is not security, and that a control which is declared can be partial, misconfigured, or bypassed when it matters.

He walks through where proof beats paperwork: MFA that cannot be sidestepped, backups that don’t share fate with production, and standing authority cut down until little is left to steal. He covers supply chain risk, the trouble with pricing AI exposure, and what underwriters will start asking next.