NetDiligence® is a privately-held cyber risk assessment and data breach services company.
Since 2001, NetDiligence has conducted thousands of enterprise-level cyber risk assessments for a broad variety of organizations, including public entities, financial services, retailers, software developers, medical providers and universities. NetDiligence services are used by leading cyber liability insurers in the U.S. and U.K. to support both loss-control and education objectives.
In 2007, we expanded our services to include data breach readiness and response and general cyber risk education and awareness. Our innovative web-based solutions include QuietAudit® SaaS for Vendor Risk Management and Underwriting Loss Control, eRiskHub®, Breach Coach® Cyber Portal and Breach Plan Connect™.
NetDiligence also publishes an annual Cyber Claims Study and hosts annual Cyber Risk Conferences in Philadelphia, Santa Monica, Toronto and London.
Risk Innovation Award
Cyber Risk Pre-Breach
Team of the Year
Vendor of the Year
eRiskHub® Support Team
Kimberly Proza, Account Manager
Micah Howser, Manager
Mike Richoux, Account & Project Manager
“The support team responded in less than a minute when I put my question into the queue via the site. I’m so impressed with this team! Your response to our needs and customer service is fantastic!”
"By failing to prepare, you are preparing to fail."
We have found NetDiligence to provide best-in-class service when consulting on cyber security issues, in addition to hosting the best “one stop shop” for providing access to our panel vendors through their eRiskHub. Their ability to build client rapport through tailored analysis and solutions is second to none. Mark and his team are incredibly responsive and have proven to be an invaluable partner of Hiscox.
NetDiligence products and services have been integral in offering true cyber risk management to Gallagher’s clients. Their wealth of cyber risk solutions allows Gallagher to deliver a customizable and intelligent suite of cyber risk tools that Can be leveraged to offer 24/7 guidance to our clients. In an ever-changing cyber risk environment, it is important to have a reliable and trusted partner that strives to be on the cutting edge of evolving trends and offer thoughtful and meaningful solutions that assists clients to get ahead of the curve. NetDiligence is that partner.
The thing that truly sets NetDiligence apart is their assessment methodology. Their holistic approach towards network security and business continuity management gives them the ability to gauge whether or not an organization has a sufficiently mature risk management culture in place. They’ve got qualified people with a thorough grounding in technical network security and the legal liability issues that matter to our underwriting staff. NetDiligence brings value to our company through their solid, macro-level analysis, and to the companies they assess by exposing specific technological and process-oriented vulnerabilities. They deliver exactly what I need…nothing more, nothing less.
We have been using NetDiligence Cyber Risk Assessment services for over 8 years in which time they have assessed and tested the security and privacy practices of our cyber risk insurance clients with great success. As a pro active loss prevention function, their service is invaluable to an insurance company such as ours. Their Assessments have helped us control the frequency and severity of potential cyber risk loss events while our insured business customers also find solid value in the NetDiligence® Assessment service, especially with regard to regulations that demand prudent information security controls such as GLBA, HIPAA and Sarbanes Oxley. NetDiligence® is a strong partner and we look forward to growing our business with their support.
We consider ourselves fortunate to have found a partner in NetDiligence. They continually provide a level of knowledge, professionalism and courtesy that is unsurpassed in the industry. The network assessment process that they have developed and employ is comprehensive in scope, without being overbearing. Their assessments provide tremendous value to us from an underwriting perspective by aiding us in evaluating not only the network security posture of the insured, but also other liability and regulatory issues that relate to it. At the same, the insured is provided with peace of mind in knowing that they too have a partner to assist in evaluating best practices, provide recommendations and document their network management strengths, and weaknesses. NetDiligence is truly unique, and will continue to be an indispensable part our team.
We use NetDiligence for their security services for our Fortune 1000 clients. Their intimate understanding of how to get the right data, something that is extremely difficult to do, proved to be invaluable. We’ve used over 100 security testing companies in the past and NetDiligence is the only organization that is capable of completely gratifying everyone involved. They are the best in the business, and a great partner with which to be working.
NetDiligence provides Beazley Group with risk assessment services for our Information Security and Privacy Insurance which addresses issues of privacy and IT security. Stemming from their thorough review of the security practices and procedures in place, they are able to provide us with a comprehensive understanding of the status of the insured’s cyber-security. Their efficiency in gathering the right information is key to covering the exact areas that are important to us and to the policyholder. NetDiligence excels in identifying weaknesses or vulnerabilities that could potentially lead to a costly disruption. NetDiligence has, and continues to be, a valuable business relationship to Beazley Group.
Aon’s Technology and Professional Risk Group has relied on NetDiligence to provide superior technical and operational network risk assessments for a number of Fortune 1000 entities. The NetDiligence methodology integrates well with Aon’s exposure analysis to deliver comprehensive risk management/insurance solutions associated with electronic processes and interactions arising from business activities.
NetDiligence has been a great partner for Wells Fargo Insurance Services. As an insurance broker, it is our job to deliver the best insurance and consulting solutions to our clients, and NetDiligence has assisted us with providing these solutions. The knowledge and expertise provided to us and our clients in the risk assessment arena has been invaluable. Specifically, NetDiligence has created a comprehensive information portal for loss prevention and mitigation, which is extremely beneficial to our middle market size clients. We look forward to continuing our strong partnership.
At Northern California Medical Associates, Inc., keeping our patients’ information safe is top priority. NetDiligence helped effectively with our HIPAA Security Compliance efforts by responding with a service within a tight deadline given to our healthcare practice. They provided us with an on-site HIPAA/HITECH-focused cyber risk assessment, which included learning about our enterprise wide information security & privacy practices, and mapping them against industry requirements. Their dedication to data security and privacy allows us to fulfill our efforts to do everything we can to keep patient information protected.
NetDiligence provided to our health system the independent expertise we needed to do a comprehensive risk analysis and assessment. The debriefing and reports clearly identified opportunities for improvement and also areas where we excelled. Timelines and priority setting assisted the individuals at the facilities with their plans of correction. NetDiligence was able to bring best practices and policies to our organizations which assisted in creation of new practices. NetDiligence was not just a company hired to do a job but a valued partner to our health system.
NetDiligence has been a valuable resource in assessing the diverse cyber risks impacting our clients. Their expertise helps our clients understand the strengths and weaknesses of their data protection measures and whether those measures meet a standard of care for reasonable and prudent practices.