For cyber insurance renewals

Cyber insurance evidence for Australian small business.

Insurers ask the same technical questions every renewal: do you scan, how often, is email authentication configured, are internet-facing patches landing. AttackEdge answers those questions with a dated PDF you can attach to the form.

Hosted in SydneyMonthly external scan cadenceFrom A$39 per month

Most Australian small businesses renewing a cyber insurance policy now face a security questionnaire. Some are two pages; some are twenty. The technical-scanning questions are usually the same: vulnerability scanning frequency, email authentication posture, patching of internet-facing services, subdomain hygiene, TLS configuration.

Without evidence, you either guess (and risk the policy if you guess wrong) or pay a consultant to produce a one-off report that goes stale by the next renewal. AttackEdge sits in between: a self-serve subscription that produces dated evidence every month, so the answer is the same whether the form arrives in January or July.

Insurer-specific guides

By insurer, with the real proposal-form questions.

Per-insurer pages mapping the technical-scanning questions on each proposal form to what AttackEdge does and does not cover.

Chubb

The Chubb Cyber ERM proposal form is the document most Australian brokers send first. Real verbatim questions mapped to where AttackEdge answers them.

Read the guide →
Emergence

Emergence is Australia’s largest specialist cyber underwriter. The Cyber Event Protection form scales with revenue. See which sections AttackEdge feeds evidence into.

Read the guide →
Marsh

Marsh places cover with multiple underwriters in Australia, so the application form blends underwriter-specific and broker-side questions. AttackEdge covers the external-scanning ones.

Read the guide →
CGU

CGU’s SMB cyber product is distributed through brokers and the proposal is rarely published. The questions every SMB underwriter asks still apply, and AttackEdge answers the external ones.

Read the guide →
The questionnaire

What insurers typically ask, and what we answer.

Five technical questions AttackEdge answers directly. Three more that need a separate tool or process.

Insurer questionAttackEdge answerStatus
Vulnerability scanning frequencyMonthly external scan on Solo and SMB, with a dated PDF for every cycle.AttackEdge answers this
Email authentication (SPF, DKIM, DMARC, MTA-STS)Dated check on every scan, with the result captured in the report PDF.AttackEdge answers this
Patch management on internet-facing servicesBanner and version detection on exposed services, matched against the public CVE and CISA KEV catalogues. Reported with severity and remediation.AttackEdge answers this
Subdomain hygiene and staging cleanupPassive discovery of subdomains under your registrable domain, flagged as discovered-not-scanning until you opt in. Old or dangling records show up here.AttackEdge answers this
TLS posture on customer-facing sitesCertificate validity, weak ciphers, missing security headers — reported each cycle.AttackEdge answers this
Multi-factor authentication on staff and admin accountsOut of scope. MFA is configured inside your identity provider (Microsoft 365, Google Workspace, Okta). We flag exposed login pages so you know what is internet-reachable.Out of scope
Internal vulnerability scanningOut of scope. We only scan what is on the public internet. Internal scanning needs an agent or a network appliance.Out of scope
Documented incident response planOut of scope. The plan itself is a document you write; we provide the technical evidence stream that informs detection.Out of scope
What you get

Four things AttackEdge delivers to a renewal.

Continuous external monitoring

Monthly external scans of your domains, subdomains, and IPs on Solo and SMB. Anything new on the public internet under your registrable domain shows up in the dashboard. Insurers increasingly expect this as a baseline, not an extra.

Dated evidence trail

Every scan is timestamped and stored. When your insurer asks for proof that you have been scanning, you export a dated PDF. No screenshots, no after-the-fact summary, no consultancy retainer to defend the answer.

Plain-English findings

Each finding is written for a business owner first, with a technical addendum for IT or your MSP. The technical-scanning answers are quotable directly into an insurer questionnaire.

Honest scope

No external scanner answers every question on a cyber insurance form. We tell you which questions we answer and which still need a separate tool or process. That honesty is part of the evidence.

What you get

Plain-English summary, two audiences, same PDF.

Owner summary at the top; technical detail and remediation steps for IT or your MSP underneath. Insurers and brokers read the summary; your IT person uses the technical section.

View sample report See full methodology

Which plan fits a renewal cycle.

For one website (a sole trader, a freelancer, a single-site business), Solo at A$39/month is the right shape: 15 scan units a month, dated PDF report on every scan.

For a small business with a few systems (a main site, a client portal, a couple of subdomains, email), SMB at A$99/month gives you 50 scan units a month.

If you only need a single PDF for one renewal and don't want an ongoing subscription, the Snapshotat A$149 is one purchase, one comprehensive report covering up to 15 of your sites, with a download link active for 30 days. Most businesses prefer the subscription because next year's renewal arrives sooner than you think.

View subscriptions View SnapshotPrivacy Act evidence
Common questions

Honest answers.

  • Will AttackEdge answer my entire cyber insurance questionnaire?

    No. AttackEdge answers the technical-scanning portion: vulnerability scanning frequency, email authentication, subdomain hygiene, patch management on internet-facing services, and TLS posture. Questionnaires also ask about MFA, internal vulnerability scanning, incident response plans, backups, and staff training. Those are out of scope for an external scanner. The technical-scanning answers are usually the parts insurers are most strict on, which is where AttackEdge fits.

  • Which insurers accept this kind of evidence?

    Cyber insurance underwriting standards are not uniform. Most underwriters and brokers in Australia recognise recurring external vulnerability monitoring as evidence for the technical-scanning questions on their forms. We do not claim to be on any insurer's pre-approved tooling list (those lists are rare in this market). The dated PDF stands as evidence on its own.

  • Do you give me the answers, or the evidence?

    Evidence. We produce a dated PDF showing what scans ran, on what scope, with what findings. You read that PDF and translate it into the answer your insurer is asking for. The plain-English summary makes the translation straightforward, but the responsibility for the answer stays with you.

  • Does this make me Privacy Act compliant?

    No. AttackEdge contributes one technical measure (continuous external monitoring) to the broader set of "reasonable steps" APP 11 requires. Other measures — MFA, access governance, incident response, breach notification — sit outside our scope. See the Privacy Act page for the honest picture.

  • How is this priced?

    Solo is A$39 per month and includes 15 scan units. SMB is A$99 per month and includes 50 scan units. One scan = one site = one unit, so you decide how to spend them. If you only need one report for a renewal, the A$149 Snapshot is a single one-off purchase covering up to 15 of your sites in one bundled report. If you run out mid-cycle, a scan pack adds 10 units for A$19.

  • Where is the evidence stored?

    Primary records are stored in Sydney, Australia on Fly.io Postgres. Report artifacts are stored in Cloudflare R2. Subprocessors outside Australia are listed openly on the security page.

Renewal-ready evidence

Have a dated PDF ready before the form arrives.

Most checks come back with three things to fix and an hour of work. The next renewal is closer than you think.

Start from A$39/month Where data is stored
Hosted in Sydney · Passive scanning only · Dated PDF every cycle