SSIMPLE (Secure Systems and Information Management Principles with the benefits of our Loss Experience) is a holistically designed risk management platform that includes complimentary third party services to help address prevention and detection gaps in an Insured’s security posture, alongside an innovative primary insurance policy and response services in the event of a breach.
Simplicity breeds functionality.
Simple breeds security™
Now more than ever, businesses must be on guard against cyber threats. With more and more data being stored and processed online, privacy and network security is an increasingly critical component of business conduct. Organizations need to carefully contemplate methods of prevention, detection and response to potential breach incidents so that they are adequately prepared.
An attacker resides in a network for an average of 146 days before detection.
Source: Symantec, 2017
Is a secure, web-based self-assessment portal that allows users to assess cybersecurity effectiveness. Questions are derived from expertise in threat tactics and techniques and results are mapped to the NIST Cybersecurity Framework. Customer reports with specific, prioritized recommendations are provided. Re-assessments are allowed and results tracked to show improvements over time.
The FICO® Cyber Risk Score provides a stable, long-term indicator of network security risk based on a diverse set of inputs, global cybersecurity threats and proprietary analytical methods, helping organizations understand and strengthen their cyber posture and assess the risk of their third party vendors in the supply chain.
Assesses Microsoft Office 365 settings to ensure they are configured securely and that critical functions such as auditing are enabled. The primary deliverable is a report that prioritizes the recommended remediation actions and associated solutions.
CyRisk provides DNS firewall protection, traffic analysis, and uncovers “Shadow IT”. CyRisk combines threat intelligence from multiple sources to block known malicious traffic, not just questionable traffic caught by web filters. CyRisk enables customizable compliance policy enforcement and provides web usage analytics.
Is the central resource for information about all of these services, and also includes educational and reference resources to develop and improve controls, such as policy templates.
Provides Digital Forensics and Incident Response capabilities through distributed edge computing to search all endpoints in an environment rapidly. Importantly, when paired with Managed CyFIR Services, it also provides a zero-day malware detection capability.
Theft of company data by departing employees can be very costly. Quickly, efficiently, and inexpensively examine recently accessed files and USB insertion history of recently departed employees to determine if full investigation is advisable.
Our dedicated team of professionals is available via phone, email and even in person to help walk the Insured’s team through the sign up process and the various services available.
Josh joined Aspen in June 2016. He is Global Head of Tech E&O and Cyber at Aspen Insurance. Josh has participated as both a panelist and moderator at various cyber industry conferences, including NetDiligence, the New York State Bar Association, the Claims and Litigation Management Society, Defense Research Institute, Primerus and Execusummit, among others. He attended undergraduate and law school at Western New England College, majoring in Information Technology, and he maintains a Certified Information Systems Security Professional (CISSP) designation.
Ian is a cybersecurity specialist with a background in IT infrastructure focusing on networking, virtualization, and storage technologies. He previously worked for a VAR/MSP for over 13 years in various roles including Senior Systems Engineer, Engineering Team Lead, and Senior Solutions Architect and has experience in multiple industry verticals. Ian has worked closely with various technology vendors and has deployed and vetted many security technologies in his career. Ian completed his undergraduate degree at Worcester Polytechnic Institute (WPI), majoring in Computer Science. He currently holds various IT and security certifications including CISSP, CCNA Cyber Ops, CCNA Routing & Switching, VMware VCP-DCV 6.5, CompTIA Security+, Sophos Certified Engineer, Extreme Networks Certified Expert - Networking, as well as AWS Solutions Architect, SysOps Administrator, and Developer Associate.
Matthew has more than sixteen years of experience in the insurance industry and currently serves as Vice President in the cyber team at Aspen. Matthew has directed response efforts to cyber-related matters and data breach incidents both domestically and internationally. He has authored articles on preparing for and reacting to data breach incidents, has spoken on cyber panels to industry professionals and has been an instructor at the CLM School of Cyber Claims. Prior to working in the insurance industry, he was an Associate at Wilson, Elser, Moskowitz, Edelman & Dicker where he handled insurance defense matters. Upon graduation from law school, he clerked in New Jersey Superior Court. He received his B.A. in Psychology from Rutgers University and his M.A. in Psychology from Farleigh Dickinson University. He graduated cum laude with his J.D. from New York Law School. He is admitted to practice law in New York and New Jersey.