Question 1

What is the Cyber Defense Score™?

Accepted Answer

The Cyber Defense Score™ is an A–F letter grade plus a 0–100 numerical score produced by a 100-tool external attack surface scan. It shows you exactly what cyber insurance underwriters see when they assess your business. It is mapped to NIST CSF 2.0, CIS Controls, SOC 2, NIST 800-171, FTC Safeguards Rule, and PCI-DSS readiness.

Question 2

How does Cyber Defense Agent help with cyber insurance?

Accepted Answer

Cyber Defense Agent runs the same external scans that cyber insurance underwriters use to assess your risk. By scanning first, you can identify and fix gaps (missing MFA, DMARC, open ports, SSL issues) BEFORE your renewal or new application. This helps you avoid denials, reduce premiums, and pass underwriting on the first attempt.

Question 3

What do cyber insurance underwriters scan for?

Accepted Answer

Underwriters typically scan for: MFA enforcement across all remote access, DMARC/SPF/DKIM email authentication, open RDP ports (3389), SSL/TLS configuration, known vulnerabilities in public-facing services, DNS security, and evidence of endpoint detection (EDR). Cyber Defense Agent checks all of these in 60 seconds.

Question 4

Can Cyber Defense Agent help me lower my cyber insurance premium?

Accepted Answer

Yes. Carriers offer premium discounts of 10–25% for businesses that demonstrate strong security posture. By fixing the gaps Cyber Defense Agent identifies and presenting your Cyber Defense Score™ and trust page to your broker, you provide concrete evidence of risk reduction that carriers reward with lower premiums.

Question 5

Why was my cyber insurance application denied?

Accepted Answer

The most common denial reasons are: no MFA on email and remote access (41% of denials), missing DMARC email authentication, open RDP ports, no EDR/endpoint protection, and no incident response plan. Cyber Defense Agent scans for all of these and shows you exactly what to fix before reapplying.

Question 6

How long does a Cyber Defense Agent scan take?

Accepted Answer

A full 100-tool external attack surface scan completes in approximately 60 seconds. No software installation, no questionnaires, and no credit card is required to get started. You see the same view of your attack surface that underwriters see.

Question 7

What frameworks does Cyber Defense Agent map to?

Accepted Answer

Cyber Defense Agent maps scan results to NIST CSF 2.0, CIS Controls, SOC 2, NIST 800-171, FTC Safeguards Rule, and PCI-DSS readiness. These are the same frameworks cyber insurance carriers reference in their underwriting guidelines.

Question 8

How much does Cyber Defense Agent cost?

Accepted Answer

Essentials starts at $149/mo ($1,490/yr). Pro is $349/mo ($3,490/yr) and includes internal scanning, SOC 2 readiness, and full MCP toolset. Enterprise is $999/mo ($9,990/yr) with daily scans, custom framework mapping, and a dedicated AI agent instance. MSP partners pay $79/business/mo with a 25-business minimum. The free scan is always free.

Question 9

How do I prepare for cyber insurance renewal?

Accepted Answer

Start 60–90 days before renewal. Run a Cyber Defense Agent scan to identify gaps. Fix critical items: enforce MFA everywhere, deploy DMARC, close open ports, update EDR. Re-scan to verify improvements. Present your Cyber Defense Score™ and trust page to your broker as evidence of improved posture. This positions you for renewal without premium increases or coverage reductions.

Question 10

What is a trust page?

Accepted Answer

A trust page is a public cybersecurity posture page hosted at trust.cyberdefenseagent.ai/{your-slug}. It displays your Cyber Defense Score™, framework compliance status, and last scan date. Brokers, underwriters, and business partners can verify your security posture in 60 seconds instead of reviewing 30-page questionnaires.

Challenge	The Old Way	With CDA
FTC Safeguards Rule compliance	DMS vendor says they handle it; no independent verification	Independent 100-tool scan mapped to FTC Safeguards Rule requirements
DMS and vendor dependency	Single point of failure (as CDK proved); no visibility into vendor security	Scan your own domain plus critical vendor domains for external vulnerabilities
F&I data protection	Trust the DMS; customer credit data flows through unverified channels	Verify email auth, encryption, and access controls protecting financial data
Cyber insurance requirements	Post-CDK premiums skyrocketing; unclear what controls to implement	Pre-scan against insurer requirements; demonstrate controls to reduce premiums

Cybersecurity Compliance for Auto Dealers

The regulatory reality for auto dealers

How Cyber Defense Agent transforms auto dealers security

Built for auto dealers

100-Tool External Scan

FTC Safeguards Mapping

Customer Data Protection

Vendor Risk Visibility

Insurance Documentation

Continuous Monitoring

Frameworks that matter for auto dealers

Frequently asked questions

Does the FTC Safeguards Rule apply to auto dealers?

What did the CDK Global attack teach us?

What financial data do dealers need to protect?

How has cyber insurance changed for dealers post-CDK?

Can dealers rely on their DMS vendor for cybersecurity?

Get your Cyber Defense Score™ in 60 seconds.