ARC (Analytics of Risk from Cyber)

Quantify the impact of cyber security threats with ARC

In the context of a soft property market and a low interest rate environment, (re)insurers are building their growth strategy around a strong cyber line of business. To support the industry’s growth, AIR has developed ARC, a cyber risk analytics and modeling platform that informs risk selection, pricing, portfolio management and risk transfer.

ARC’s Unique Capabilities

Comprehensive Risk Modeling

Risk models quantify the financial impact of for several types of cyber incidents like security breaches, service provider downtime, or electric grid blackouts.

Cyber Risk Data Augmentation

Underlying ARC is an exposure database developed in partnership with leading cyber data providers. Leverage matching algorithms to access detailed cyber supply chain data and augment your own.

Flexibility and Transparency

ARC’s modeling framework empowers users to explore unique views of risk and examine the underlying data and assumptions that drive modeled output.

Read the Factsheet

"AIR’s unmatched combination of a detailed cyber risk model for security breach, service provider downtime, and other causes of loss, plus a rich cyber industry exposure database of over 12.4 million organizations, as well as its transparent and flexible modeling framework, will enable us to effectively manage our clients’ risk from cyber.”

— TigerRisk Partners

"We’re excited to be both one of the first users of AIR’s new probabilistic cyber model and a part of the model’s development. Making use of AIR’s cutting-edge model will help our current and prospective clients better understand their cyber exposures. It will reinforce our ability to develop and deliver innovative cyber insurance solutions, such as cyber industry loss warranties (ILWs), and work with insurance-linked securities (ILS). "

— Capsicum Reinsurance Brokers LLP Group

Unlock a Probabilistic View of Your Cyber Risk

The AIR Probabilistic Cyber Model is now accessible through ARC, providing organizations with cyber risk analytics to quantify the likelihood and financial impact of cyber security breach and cloud service provider downtime incidents in a given year.

Leverage our probabilistic cyber risk model to optimize underwriting guidelines and test different waiting periods, attachment points, and other insurance policy terms. Manage your portfolio tail risk by gaining insights into which points of risk aggregation are riskier than others and understand how systemic incidents can impact your overall portfolio.

Learn more

Manage your cyber risk program from start to finish. With ARC, you can:

Monitor accumulations of cyber risk

To inform underwriting strategy and capital allocation decisions, you must have a good understanding of the accumulations of correlated risk existing in your portfolio. Monitoring these accumulations regularly and assessing them against your company’s appetite for risk is critical as more cyber risk is written.

Estimate insured losses using cyber scenario models for coverages that include data breach and business interruption.

Understand the drivers of cyber risk

Even though cyber is an emerging line of business, the expectations for the quality of analysis and reporting can be the same as for more mature lines. Understanding the drivers of risk is critical to justifying recommendations and creating confidence in the results.

Examine your total exposed limits distribution and each insured’s contribution to modeled losses.

Optimize underwriting strategy

You can profitably grow your book of business while not exceeding risk appetites. Having defined underwriting and portfolio management guidelines, explore and test new strategies before rolling new products out to the market.

Determine the impact of coverage changes and of new or expiring policies on the portfolio.

Evaluate any policy exposed to cyber risk

Silent cyber coverage reveals itself when the impacts of cyber incidents aren’t explicitly included or excluded in the policy wording. Due the potential for losses outside affirmative cyber lines, it’s important to understand your exposure to this potential threat.

Evaluate the cyber risk from commercial policies in any line of business, including property, general liability, E&O and D&O

Keep up with rapidly evolving risk

The cyber risk landscape can evolve faster than your own data or system’s ability to adapt. As new threat vectors emerge or the magnitude of cyber incidents change, there is a need to explore the potential impact on your book of business.

Test your own view of risk by adjusting the model’s severity and vulnerability assumptions.

Augment your exposure data

Competition can create an environment where the collection the ideal amount of exposure data is discouraged. The type of data that relates to an organization’s firmographics and technology profile is both the most challenging to obtain and the kind needed for modeling.

Leverage ARC’s comprehensive database of cyber industry exposures to augment your own data with that required for modeling.