Centeye
Talk to us Get a demo
Solutions · Compliance & insurance readiness

Prove your controls — continuously.

Carriers no longer ask “do you have insurance?” — they ask “can you prove your controls?” The same controls that block real attacks are the ones underwriters score, and the gap between “attested” and “actually in place” is where coverage is denied and claims are refused. Centeye proves them on an ongoing basis — fleet-wide, through the MSP.

Get a demo See the controls
Why it’s a forcing function

Coverage now hinges on controls many teams can’t prove.

41%
of SMB cyber-insurance applications are denied on first submission
— Coalition 2026
42%
of SMBs are required to add controls before coverage is granted
— Coalition 2026
MFA + EDR
the two most common refusal triggers — both addressed by Centeye in one install
58%
of cyber claims are BEC + wire fraud
— Coalition 2026
Control families

What carriers check — and how Centeye covers it.

Every control underwriters weight is covered. Centeye runs the heaviest-weighted families natively — the ones carriers deny on most often — and continuously monitors and scores the rest from the MSP’s existing stack, so all of it lands as evidence in one report.

  • Multi-factor authentication

    Centeye native

    Daily MFA Posture Auditor across M365 + Google Workspace — enrollment %, admin coverage, domain enforcement — and forces MFA step-up on risky users. The single most-checked control, proven continuously.

  • Endpoint EDR with active response

    Centeye native

    Native EDR agent + multi-source ingestion + ransomware trifecta + 51 rules across 35 MITRE techniques; isolate / kill / quarantine. The control that gates ransomware eligibility.

  • Email security — anti-phishing & BEC

    Centeye native

    4-stage AI email cascade with auto-quarantine, pull-from-all-inboxes, domain/URL/IP block and account-takeover signals. BEC is the largest cyber-claim category, and it’s covered end to end.

  • Identity threat detection + dark-web exposure

    Centeye native

    ITDR (impossible travel, MFA-fatigue, token theft, OAuth risk) plus a dedicated dark-web exposure surface that auto-triggers forced reset / MFA step-up / session revoke before stolen credentials are used.

  • 24/7 monitoring / MDR + logging & SIEM

    Centeye native

    Kavach watches every surface 24/7 + ClickHouse SIEM (90-day retention) + cross-surface correlation. With human-in-the-loop approval, an MDR-grade operating model.

  • Documented & tested incident-response plan

    Centeye native

    Argus IR runbooks fire automatically per incident, backed by an immutable hash-chain audit trail — ready-made evidence for the carrier and the claim.

  • Network / DNS protection

    Centeye native

    DNS / C2 & exfil detection with block / sinkhole at the resolver covers the command-and-control angle; network segmentation and RDP exposure are read from the MSP’s network stack into the score.

  • Privileged access management

    Centeye native

    Privilege-escalation detection, temporary admin-role removal, service-principal lock and admin-MFA reporting — the privileged-access signals carriers look for, continuously checked.

  • Secure, immutable, tested backups

    Monitored & scored

    Centeye reads and scores backup & recovery posture into the readiness report so the evidence reflects real, tested copies. The MSP’s backup tool runs the backups; Centeye proves they exist.

  • Patch & vulnerability management

    Monitored & scored

    CVE analysis on web apps and dependencies surfaces exposure and feeds the score, while the MSP’s existing tooling applies OS and third-party patches. Centeye correlates; your tooling remediates.

  • Security-awareness training

    Monitored & scored

    Supplied from the MSP’s training stack and referenced in the readiness report, so the awareness control shows up as evidence alongside the technical controls.

Insurance-friendly, not just insurance-ready

Continuous proof — the part that protects the claim.

One carrier-ready report

The Cyber-Insurance Readiness Report — 30/90-day and quarterly, ACORD-aligned, signed PDF — maps MFA posture, backup/recovery posture and the control families to what underwriters ask for.

Continuous, not point-in-time

Controls are proven on an ongoing basis, cutting the misrepresentation risk that gets claims refused — and supporting better renewal terms.

A retention & upsell lever

An MSP can take a whole book of clients from “denied / loaded” to “insurable at better terms,” turning readiness into a fleet-wide growth motion.

Brokers as a third channel

Denied or loaded applicants referred by brokers get Centeye installed — a referral loop that feeds the MSP motion.

Available from Tier 2 and above. Premium and denial impacts are directional and vary by carrier, broker, jurisdiction, industry and loss history — validate with the client’s broker. Centeye proves and reports on controls; it does not itself issue insurance or perform audits.

Make every client insurance-ready.

See the readiness report for your fleet — and a plain-English read on where each client stands today.

Get a demo Talk to us