Skip to main content
InsuranceSecurity

Insurance Broker Strengthens Policyholder Data Protection

Regional Insurance Brokerage
Minneapolis, MN
180 employees
5 months
90%
fewer data incidents
Started:Oct 2023
Duration:5 months
Completed:Mar 2024

The Challenge

Midwest Insurance Partners, a brokerage handling $500M in premiums annually, received notice of an upcoming state regulatory examination focused on cybersecurity. Their last exam had noted 'material weaknesses' in data protection.

The brokerage handled highly sensitive data: SSNs, health information, financial details, and beneficiary information for 50,000+ policyholders. Data was scattered across email, shared drives, agent laptops, and legacy systems with no consistent protection.

Carrier partners were also increasing security requirements. Two carriers had threatened to reduce commissions without improved security controls.

Our Approach

1

Data Discovery & Classification

Week 1-4

Scanned all systems to identify sensitive data locations. Found policyholder data in 47 locations including unexpected email archives and personal drives.

2

Data Protection Controls

Week 4-12

Implemented encryption for all sensitive data, deployed DLP to prevent unauthorized sharing, and established data handling policies.

3

Access Controls & Training

Week 10-16

Implemented least-privilege access, MFA for all users, and role-based security training for 180 employees.

4

Regulatory Documentation

Week 16-20

Created compliance documentation, prepared for examination, and achieved clean regulatory report.

Solution Overview

Data protection program including encryption, DLP, access controls, security awareness training, and regulatory compliance documentation.

The Results

Passed state regulatory examination
Encrypted 100% of sensitive data
Reduced data exposure incidents by 90%
Achieved cyber insurance premium reduction

Business Impact

Cost Savings
25% cyber insurance premium reduction
Deals Enabled
Maintained preferred carrier status with all partners
Risk Reduction
90% fewer data exposure incidents

"Regulators were impressed with our security posture. PlatOps helped us exceed requirements."

L
Linda Nguyen, Chief Compliance Officer
Regional Insurance Brokerage

"Our carriers noticed the improvement. Security is now a competitive advantage in carrier negotiations."

R
Robert Chen, CEO
Regional Insurance Brokerage

Key Takeaways

  • Data discovery often reveals unexpected sensitive data locations
  • Insurance regulators are increasing cybersecurity scrutiny
  • Carrier security requirements are becoming enrollment conditions
  • Security investment can reduce insurance costs

Key Outcome

90%
fewer data incidents

Technologies Used

Microsoft PurviewVaronisProofpointOktaCrowdStrike

Compliance Frameworks

NAIC Model LawState RegulationsSOC 2

Want Similar Results?

Let's discuss how we can help your organization achieve its goals.

Get Free Assessment

Industry Solutions

Insurance
View industry solutions

More Insurance Success Stories

Security

Insurer Secures Multi-Cloud Environment

500+issues remediated
Life Insurance Provider
Hartford, CT

Ready to Write Your Success Story?

Join the organizations that have transformed their security and infrastructure with PlatOps.

Book Strategy CallView All Case Studies
Get Free Assessment