What can I expect from the Corvus policyholder experience?

Follow our step-by-step guide to unlock the full Corvus policyholder experience.

Step 1: Register your Policyholder Dashboard account. 

Now that your policy is bound, you’ll be flying with Corvus! To make the most of your experience, we ask that you keep your eyes peeled for an email invitation to complete your account setup. This is your ticket to all of our digital policyholder benefits, such as personalized cybersecurity recommendations, risk management resources, and monthly Corvus Scan reports. To get an idea of what our Policyholder Dashboard has to offer — and how to navigate it — view our interactive walkthrough!

Step 2: Download your policy.

Time to experience the Policyholder Dashboard in all its glory. Your first task? Find your policy, take a look at your coverage, and download it for safekeeping. You’ll find the “Your Policy” tab on the left-hand navigation menu, along with all of our vCISO Center offerings and claims information.

Step 3:  Engage with the vCISO Center.

Your virtual CISO is here to help you prioritize that mounting security to-do list, based on which actions will most improve your overall cybersecurity posture. Through the combined efforts of our Corvus Scan, Security Questionnaire, Action Center, and Vendor Marketplace, you’ll know what you need to work on to boost your cyber hygiene.

  1. The Corvus Scan Results show your latest report from our non-invasive security scan (which we update monthly).

    ➕  By clicking the Scan Results tab, you’ll find your latest Corvus Score. At the top you'll find your score, with specific findings below— identified by critical, high, medium or low in importance. Beyond this, you’ll find more in-depth information in the Action Center.
  2. The Security Questionnaires cover the security policies and programs at your organization — everything our Corvus Scan can’t get from an outside view.

    ➕  Our scan is not the be-all, end-all of your cybersecurity journey. To supplement what we can’t see through your public IT infrastructure, we have two questionnaires: Ransomware Supplemental Assessment and Security Advanced. Not only does this give us a more comprehensive understanding of your organization’s systems, it also identifies security controls required for renewal eligibility.
  3. The Action Center is where the above sources of information are brought together into a single, prioritized list of IT security recommendations.

    ➕  Action Cards will be displayed based on criticality and can be expanded to reveal details about the issue discovered, with an explanation from our team. Once you complete the Actions described in the Action Card, select “Yes” to move that card to the “Completed” section. Action Cards are updated each time we refresh your Corvus Scan report to include any newly discovered issues.
  4. The Vendor Marketplace is where you can find our list of thoroughly vetted partners that offer discounted cybersecurity products and services for Corvus policyholders. By clicking on a vendor, you’ll either head to a Corvus-associated landing page or be provided an email template to learn more and get connected.  

Step 4: We'll keep in touch. 

You can expect to hear from us throughout the entire policy period. Our Vulnerability Alerts are sent directly to your email if we locate a critical vulnerability on your system or if we publish a general advisory about a cyber risk event such as a zero-day attack. Our Policyholder Newsletter hits your inbox once a month, with the latest on cybersecurity trends and updates from us on anything new on the Policyholder Dashboard. 

Plus, you can decide who on your team hears from us. Your “My Team” tab allows you to add new users to your account (IT staff, security vendors, or colleagues in legal and finance). This ensures key communications, like vulnerability alerts, hit the right inboxes in your organization, getting in front of the people who need to take action. 

Step 5: Prepare for renewals. 

Before your renewal, we’ll contact your broker and review your Corvus Score to identify any changes at your organization or broader risk factors that may have arisen. If your score or security questionnaire responses appear likely to impact your renewal, we’ll help you to make the right updates or bolster your security controls so you’ll be in the strongest position possible before quoting. 

Note: We offer additional services for qualifying policyholders with over $100mm in

annual revenue. If you qualify, your broker will provide information about these services.

Breach Response and Claims Process

Step 1: Discovery of the incident.

Whether your team discovers the incident internally or are alerted by an outside party, gather initial facts and activate your incident response plan.

Step 2: Notify Corvus via email or hotline.

Report the potential claim as soon as possible, before engaging outside vendors. The email and hotline can be found on your policy. When reporting the incident and setting up an initial call with the Claims Team, please provide as much detail as possible. It helps us help you.

Step 3: Work with the Claims Team.

Identify and connect with seasoned incident response vendors that are the right fit for the type of incident your company is experiencing.

Step 4: Begin the investigation.

This will typically involve privacy counsel and a digital forensics and incident response firm.

Step 5: Notify individuals and regulators.

Work with counsel and a notification and call center vendor to notify individuals and regulators if required by law.

Step 6: Notify Corvus of investigations.

Notify Corvus of any lawsuits or regulatory investigations that follow the incident.