Layers of Cyber protection

Simple is more than insurance

SSIMPLE (Secure Systems and Information Management Principles with the benefits of our Loss Experience) is a holistically designed risk management platform that includes complimentary third party services to help address prevention and detection gaps in an Insured’s security posture, alongside an innovative primary insurance policy and response services in the event of a breach.

The benefits of Simple

  • Pre-incident services help bolster security posture and reduce risk exposure
  • Available at no additional cost with primary cyber insurance policy
  • The Insured has complete control over which services they want to engage
  • Services complement the Insured’s existing IT controls to help address prevention and detection gaps
  • Personalized customer service that doesn’t just provide a list of available services and disappear – our team of experts is available to personally walk the Insured through their options and assist with onboarding as needed

Simplicity breeds functionality.
Simple breeds security™

The platform offers services that are intended to aid the prevention and detection of a privacy and network security incident. To learn more about risk transference and post-incident response services, visit the Aspen Insurance website.

We're simplifying cyber protection

Now more than ever, businesses must be on guard against cyber threats. With more and more data being stored and processed online, privacy and network security is an increasingly critical component of business conduct. Organizations need to carefully contemplate methods of prevention, detection and response to potential breach incidents so that they are adequately prepared.

Did you know?

An attacker resides in a network for an average of 146 days before detection.

Source: Symantec, 2017

Products and services

Prevention

Dynetics SelfAssure

Is a secure, web-based self-assessment portal that allows users to assess cybersecurity effectiveness. Questions are derived from expertise in threat tactics and techniques and results are mapped to the NIST Cybersecurity Framework. Customer reports with specific, prioritized recommendations are provided. Re-assessments are allowed and results tracked to show improvements over time.

FICO Enterprise Security Suite

The FICO® Cyber Risk Score provides a stable, long-term indicator of network security risk based on a diverse set of inputs, global cybersecurity threats and proprietary analytical methods, helping organizations understand and strengthen their cyber posture and assess the risk of their third party vendors in the supply chain.

Ankura Office 365 Security Audit

Assesses Microsoft Office 365 settings to ensure they are configured securely and that critical functions such as auditing are enabled. The primary deliverable is a report that prioritizes the recommended remediation actions and associated solutions.

4A Security CyRisk

CyRisk provides DNS firewall protection, traffic analysis, and uncovers “Shadow IT”. CyRisk combines threat intelligence from multiple sources to block known malicious traffic, not just questionable traffic caught by web filters. CyRisk enables customizable compliance policy enforcement and provides web usage analytics.

NetDiligence eRiskHub Portal

Is the central resource for information about all of these services, and also includes educational and reference resources to develop and improve controls, such as policy templates.

Detection

CyFIR

Provides Digital Forensics and Incident Response capabilities through distributed edge computing to search all endpoints in an environment rapidly. Importantly, when paired with Managed CyFIR Services, it also provides a zero-day malware detection capability.

Elijah eCollect

Theft of company data by departing employees can be very costly. Quickly, efficiently, and inexpensively examine recently accessed files and USB insertion history of recently departed employees to determine if full investigation is advisable.

Response

Learn more about risk transference and post‑incident response services available with the Aspen Apex insurance policy.

Interested in implementing any of these pre‑incident services?

Contact us

Meet the Simple platform team

Our dedicated team of professionals is available via phone, email and even in person to help walk the Insured’s team through the sign up process and the various services available.

Josh Ladeau

Josh joined Aspen in June 2016. He is Global Head of Tech E&O and Cyber at Aspen Insurance. Josh has participated as both a panelist and moderator at various cyber industry conferences, including NetDiligence, the New York State Bar Association, the Claims and Litigation Management Society, Defense Research Institute, Primerus and Execusummit, among others. He attended undergraduate and law school at Western New England College, majoring in Information Technology, and he maintains a Certified Information Systems Security Professional (CISSP) designation.

Read more

Ian Starinovich

Ian is a cybersecurity specialist with a background in IT infrastructure focusing on networking, virtualization, and storage technologies. He previously worked for a VAR/MSP for over 13 years in various roles including Senior Systems Engineer, Engineering Team Lead, and Senior Solutions Architect and has experience in multiple industry verticals. Ian has worked closely with various technology vendors and has deployed and vetted many security technologies in his career. Ian completed his undergraduate degree at Worcester Polytechnic Institute (WPI), majoring in Computer Science. He currently holds various IT and security certifications including CISSP, CCNA Cyber Ops, CCNA Routing & Switching, VMware VCP-DCV 6.5, CompTIA Security+, Sophos Certified Engineer, Extreme Networks Certified Expert - Networking, as well as AWS Solutions Architect, SysOps Administrator, and Developer Associate.

Read more

Matthew Tucci

Matthew has more than sixteen years of experience in the insurance industry and currently serves as Vice President in the cyber team at Aspen. Matthew has directed response efforts to cyber-related matters and data breach incidents both domestically and internationally. He has authored articles on preparing for and reacting to data breach incidents, has spoken on cyber panels to industry professionals and has been an instructor at the CLM School of Cyber Claims. Prior to working in the insurance industry, he was an Associate at Wilson, Elser, Moskowitz, Edelman & Dicker where he handled insurance defense matters. Upon graduation from law school, he clerked in New Jersey Superior Court. He received his B.A. in Psychology from Rutgers University and his M.A. in Psychology from Farleigh Dickinson University. He graduated cum laude with his J.D. from New York Law School. He is admitted to practice law in New York and New Jersey.

Read more