Marcus Reilly

Cyber Insurance Analyst

Marcus covers cyber insurance, breach economics, and incident response. He is a former insurance broker who specialised in technology errors-and-omissions cover for mid-market SaaS companies.

Articles by Marcus

Phishing Incident Response Framework: A Step-by-Step Playbook
A proven phishing incident response framework for 2026: preparation, identification, containment, eradication, recovery, notification, and lessons learned.
Digital Forensic Investigation Best Practices After a Breach
How to run a defensible digital forensic investigation in 2026: ISO 27037, NIST 800-86, cloud acquisition, privilege, and GDPR clocks.
Cyber Insurance Underwriting Questionnaire: How to Answer Correctly
Field-by-field guide to cyber insurance applications. What underwriters actually verify, common rejection triggers, and how to lower your premium.
Incident Response Plan Template 2026: A CISO-Grade Playbook
A complete incident response plan template covering roles, runbooks, communications, legal holds, and insurance notification windows.
Data Breach Cost Calculator: A Methodology You Can Trust
Estimating the financial impact of a security incident requires moving beyond per-record averages to a defensible multi-variable methodology.
SolarWinds Supply Chain Attack: Lessons Five Years Later
The SolarWinds SUNBURST attack remains the definitive case study in software supply chain compromise, with state actors infiltrating thousands of orgs.
How Cyber Insurance Claims Work: From Incident to Payout
The cyber insurance claims process is a high-stakes race against time that begins the moment a security incident is detected.
Cyber Insurance for SaaS Companies: A Practical Guide
For SaaS providers, cyber insurance is not merely a defensive tool but a contractual prerequisite for enterprise growth and trust.
Cyber Insurance Cost Factors: What Drives Your Premium
Cyber insurance premiums are determined by a complex interplay of internal risk controls, industry-specific threat landscapes, and historical data.
Cyber Insurance: The Complete 2026 Buyer's Guide for Modern Businesses
The 2026 cyber insurance market has shifted from extreme volatility to a hardened-stable state where capacity is available but underwriting is strict.
Cyber Insurance Exclusions to Watch For Before You Sign
As cyber insurance markets harden, carriers are using specific exclusions to limit liability against systemic risks and poor security hygiene.
GDPR Fines and Breach Penalties: A Practical Reference
GDPR enforcement has shifted from initial leniency to aggressive multi-million euro penalties targeting both systemic failures and individual breaches.
The True Cost of a Data Breach in 2026: A Complete Financial Analysis
The financial impact of a data breach in 2026 has shifted from a manageable incident cost to a systemic threat to enterprise viability.
Post-Breach Recovery Budget Framework for CFOs
Effective post-breach recovery requires a multi-phase financial commitment that extends far beyond immediate incident response costs.
Downtime Cost Per Hour by Industry: 2026 Benchmarks
As digital interdependence peaks in 2026, the cost of system outages has shifted from technical inconvenience to fundamental revenue risk.
The MOVEit Breach Case Study: Anatomy of a Supply-Chain Disaster
In May 2023, the Clop ransomware group exploited a zero-day in MOVEit Transfer, triggering one of the most devastating supply-chain breaches.
MGM Resorts Ransomware Case Study: Social Engineering at Scale
In September 2023, MGM Resorts fell victim to a devastating ransomware attack orchestrated by the social engineering crew Scattered Spider.
Major Data Breach Case Studies: Lessons Modern Businesses Must Learn
Data breaches have transitioned from nuisance-level IT events to existential business threats, with average cost now exceeding $4.8M globally.
Change Healthcare Breach Analysis: A $2.5B Healthcare Catastrophe
The February 2024 ransomware attack on Change Healthcare, a UnitedHealth subsidiary, was the most disruptive cyber event in US healthcare history.
Ransomware Recovery Cost Breakdown: What Companies Actually Pay
Ransom demands often capture headlines, but they typically represent less than 20% of the total financial impact of a ransomware attack.
Okta Breach Lessons: Identity Provider Risk Made Real
The 2023 breach of Okta's customer support system is a definitive case study in identity provider risk and downstream compromise.
Cyber Insurance Coverage Types Explained: First-Party vs Third-Party
Cyber insurance is split into first-party coverage, which reimburses direct losses, and third-party coverage, which handles liability claims.

Articles by Marcus

Phishing Incident Response Framework: A Step-by-Step Playbook

Digital Forensic Investigation Best Practices After a Breach

Cyber Insurance Underwriting Questionnaire: How to Answer Correctly

Incident Response Plan Template 2026: A CISO-Grade Playbook

Data Breach Cost Calculator: A Methodology You Can Trust

SolarWinds Supply Chain Attack: Lessons Five Years Later

How Cyber Insurance Claims Work: From Incident to Payout

Cyber Insurance for SaaS Companies: A Practical Guide

Cyber Insurance Cost Factors: What Drives Your Premium

Cyber Insurance: The Complete 2026 Buyer's Guide for Modern Businesses

Cyber Insurance Exclusions to Watch For Before You Sign

GDPR Fines and Breach Penalties: A Practical Reference

The True Cost of a Data Breach in 2026: A Complete Financial Analysis

Post-Breach Recovery Budget Framework for CFOs

Downtime Cost Per Hour by Industry: 2026 Benchmarks

The MOVEit Breach Case Study: Anatomy of a Supply-Chain Disaster

MGM Resorts Ransomware Case Study: Social Engineering at Scale

Major Data Breach Case Studies: Lessons Modern Businesses Must Learn

Change Healthcare Breach Analysis: A $2.5B Healthcare Catastrophe

Ransomware Recovery Cost Breakdown: What Companies Actually Pay

Okta Breach Lessons: Identity Provider Risk Made Real

Cyber Insurance Coverage Types Explained: First-Party vs Third-Party