Law Firm · 14 Attorneys · Chicago
From undocumented environment to passed cyber insurance audit in 11 weeks
The situation
A 14-attorney litigation firm in Chicago had never failed a cyber insurance questionnaire — because they had never fully completed one. Their prior carrier used a simplified application. At renewal, they were moved to a standard application by a new underwriter and couldn't answer the MFA enforcement, EDR coverage, and backup restore questions with any documentation. Their broker referred them to Battice after the carrier flagged the gaps.
What was missing
- No MFA enforcement documentation — policy existed, no evidence it applied to all users
- EDR deployed by IT vendor but no coverage report or alerting confirmation on file
- Backups running but immutability not configured and no restore test in 18 months
- No incident response plan
- No written IT documentation — no network diagram, no device inventory
What Battice delivered
- MFA enforcement audit and Conditional Access configuration documentation
- Coordinated with existing IT vendor to produce EDR coverage report
- Backup immutability configured and restore test scheduled and documented
- Written incident response plan with tabletop exercise notes
- Network diagram, device inventory, and access documentation package
Outcome
The firm submitted their renewal application with a complete evidence folder eleven weeks after engagement start. The carrier issued coverage without a premium increase. The managing partner noted that the documentation package also satisfied a client due diligence request they received two months later.
11 weeks
Intake to audit-ready
Tier 1 → 3
Services engaged
0%
Premium increase at renewal