Cyber insurance evidence

Your cyber insurance broker will ask about your vendors. Here's your answer.

Underwriters at Coalition, Cowbell, At-Bay and others are adding third-party vendor risk questions to renewal forms. OpenPostern generates the evidence package they're asking for, automatically.

Generate your vendor risk report See a sample report

What your underwriter is asking

Three questions on every renewal form.

Do you monitor your third-party vendors for security vulnerabilities?

Yes, continuously.

Can you provide documentation of your vendor risk assessment process?

Yes, on-demand PDF reports.

Which of your vendors have access to sensitive customer data?

Yes, tagged by data classification.

The exact artifact your broker needs

On-demand PDF risk reports.

One click generates a complete vendor risk evidence package: your vendor inventory, risk scores, CVE breakdown, CISA KEV flags, SSL health, and last scan date.

Vendor Security Risk Report

Acme Corp

Generated May 3, 2026 · 4 vendors monitored

Portfolio Score

76

/ 100

VendorScoreCVEsKEVsSSLStatus

Stripe

Payments

91
2
--
Valid
Healthy

AWS

Infrastructure

88
5
--
Valid
Healthy

Gusto

HR & Payroll

72
8
1 KEV
Valid
Healthy

Zendesk

Support

54
14
2 KEV
Warning
At risk
Powered by OpenPostern · openpostern.comEvidence ready for underwriter

How it works

Three steps to a complete evidence package.

01

Add your vendors

Search our catalog by vendor name. We automatically enrich each one with category, domain, certifications, and historical exposure data. Takes about 60 seconds.

02

We monitor continuously

Our engine checks CVEs, CISA KEV flags, breach news, SSL certificate health, and DNS configuration every day, automatically.

03

Generate your evidence package

On-demand PDF risk report, ready in seconds. Vendor list with risk scores, CVE counts, KEV flags, SSL status, and last scan date. Send it straight to your broker.

Command plan

For $179/month, get unlimited vendor monitoring plus on-demand compliance evidence packages.

That's less than one hour of a security consultant's time. Generate as many PDF reports as you need, whenever your broker asks.

Start free, no credit card

FAQ

Questions we get from brokers and clients.

What exactly does the PDF report contain?

The report includes your full vendor inventory with individual risk scores (0-100), CVE counts broken down by severity, CISA KEV flags for actively-exploited vulnerabilities, SSL/TLS certificate health, DNS configuration status, last scan date, and any certifications on file for each vendor.

Which insurance carriers accept this?

Coalition, Cowbell, Corvus, At-Bay, and most commercial cyber carriers that include third-party risk questions in their renewal questionnaires. The report documents your continuous monitoring program, which is what underwriters are asking for.

How long does setup take?

Under 5 minutes. Search for your vendors in our catalog, click monitor, and we handle everything else. Your first PDF risk report is available immediately after adding vendors.

Your renewal is coming. Your evidence package should be ready.

Start free. Add your vendors in under 5 minutes. Generate your first PDF risk report before your next broker call.

Generate your vendor risk report View pricing