Introducing Cyber Health Rating
When a company faces a ransomware attack, its first question usually isn’t about the technical details that led to the incident. Rather, it's: How could we have prevented this?
With ransomware payments exceeding $1 billion in 2023 and the average ransom demand reaching $1.3 million in early 2024, this question is more critical than ever. Unfortunately, when a company has a poor security posture with multiple security misconfigurations in its external attack surface, including an open Remote Desktop Protocol (RDP) service, it can lead to a ransomware incident. Continuous monitoring of their security exposures with a step-by-step action plan to resolve them would have prevented this incident.
That's why we're excited to introduce Cyber Health Rating in Coalition Control®, an insightful and actionable feature that will transform how businesses understand and improve their security posture. Think of it as your security fitness tracker, providing real-time insights about your organization’s security health and clear guidance on strengthening it.
The new Cyber Health Rating dashboard in Coalition Control provides a clear view of your cyber security posture and actionable steps for improvement.
Why now? The reality of today's cyber threats
Coalition claims data paints a clear picture of the evolving threat landscape:
Businesses with exposed login panels are 3.1 times more likely to experience a cyber incident
Companies using exposed remote access technologies face a 2.5 times higher risk of attacks
Organizations with at least one security contingency are 2.53 times more likely to experience a claim
Yet, most businesses still rely on annual security assessments and checkbox compliance, leaving them vulnerable to evolving threats. Coalition data shows that active monitoring and risk management can reduce claims frequency by up to 64% compared to industry averages.
Your dynamic security profile
When you log into Coalition Control, you'll now see two essential metrics that work together to give you a complete picture of your cyber risk: Cyber Health Rating and Inherent Risk Rating.
Cyber Health Rating
Your Cyber Health Rating is a dynamic score reflecting your business' overall security posture. This score, out of a possible 100 points (the higher, the better), updates regularly based on three key factors:
Attack surface: Taking action on Zero-Day Alerts or critical security findings improves your score, while unresolved items negatively impact it. Imagine checking your score and seeing it's 72 (good), but our recommendations show that addressing exposed RDP services could boost your score to 88 (great) and significantly reduce your ransomware risk. That's the power of having clear, actionable insights at your fingertips.
Patching cadence: Regularly updating your systems and software with security patches demonstrates proactive risk management and improves your score. The faster and more consistently you patch, the stronger your security posture becomes.
Threat intelligence: Threat intel involves first- and third-party threat data, including your credential leaks, which the Coalition Security Research team gathers and analyzes.
These factors are continuously evaluated through external network scans, threat intelligence feeds, and the information provided via the Security Checklist in Coalition Control. When a new threat emerges, your organization’s score may decrease – but once you resolve the issue, your organization’s score automatically increases to reflect the improvement.
Your Cyber Health Rating is a dynamic score reflecting your business' overall security posture.
Adopting recommended security controls can elevate your company’s overall security posture and improve your rating. These controls are chosen based on their proven effectiveness in helping to prevent cyber incidents.
This new Cyber Health Rating replaces your Security Risk Score and incorporates additional factors to provide a more holistic, accurate, and actionable view of your cyber risk. The higher the score, the stronger your security posture.
Inherent Risk Rating
This complementary rating helps you understand the baseline cyber risks specific to your business context. Factors like your industry, company size, and amount of sensitive data also influence your cyber insurance costs, even with strong security practices in place.
Your action plan: Active insurance in action
Suppose a new zero-day vulnerability affecting VPN solutions emerges. Within minutes, Coalition Control alerts you about this risk, updates your Cyber Health Rating to reflect the latest threat, and provides specific remediation steps in your Action Plan.
Instead of waiting weeks or months to discover this vulnerability during an annual security assessment, you can take immediate action to help protect your business.
Your Action Plan prioritizes the most critical steps for improvement:
Resolve zero-day vulnerabilities or password leakage issues, if any
Update vulnerable systems with clear remediation guidance
Implement recommended security controls with an estimated impact on your rating, such as Coalition Managed Detection and Response (MDR)*
Access Coalition Security Awareness Training to help strengthen your human firewall
Integrate Coalition Control with Microsoft 365, Google Workspace, or other systems.
Improve protection against funds transfer fraud with Financial Monitoring.
Beyond traditional security monitoring
Consider this common scenario: You're preparing for a security audit from a major customer. Your Cyber Health Rating provides a clear, real-time view of your security posture and a documented history of your security improvements. The Action Plan helps you prioritize the most critical fixes, letting you demonstrate both your current security status and your commitment to ongoing improvement.
In addition, your IT/Security team or your managed service provider (MSP) can show improvements in your Cyber Health Rating to the executive team and board members. This enables them to communicate risk more effectively and show the return on security investments.
The Coalition difference: Active risk reduction
What makes Coalition unique is Active Insurance. We don't just offer cyber coverage — we actively help prevent incidents before they occur. Through Coalition Control and features like Cyber Health Rating, we:
Continuously assess your security posture against real-world threats
Alert you to new cyber risks before they are exploited
Guide you through specific improvements that measurably mitigate cyber risk
Support you with expert cybersecurity guidance when needed
Help you recover quickly if an incident occurs
Your Cyber Health Rating reflects your security improvements, creating a clear connection between your security efforts and cyber risk reduction.
Coalition doesn't just offer cyber coverage — we actively help prevent incidents before they occur.
Take active control of your digital security
Ready to transform your approach to cybersecurity? Log in to Coalition Control today to:
See your Cyber Health Rating
Get your customized Action Plan
Start preventing incidents before they happen
Log in to Coalition Control now.
