Cork Cyber Score

Last updated: January 26, 2026

The Cork Cyber Score is an algorithm that quantifies cyber risk for a client on four different components.

  1. Controls Coverage

  2. Compliance Events

  3. Software Vulnerabilities

  4. Claims History

The maximum score is 1,000.

Impact

Controls Coverage

The impact controls coverage has on the Cork Cyber Score is based off the security controls you have integrated, and the percentage of usage across an individual client.

Each control is weighted differently, so asset preventative controls like EDR and MFA are weighted greater than Security Awareness Training.

If the client has RMM and EDR connected, and we see 50 active devices, the score may be impacted if not all 50 devices have RMM and EDR.

Compliance Events

The impact compliance events have on the Cork Cyber Score are based on the frequency and age of the compliance events across all assets of an individual client.

Different events have greater impact on the score, and older, unresolved events can increase the impact even more.

A device that was found to be missing EDR one day again has less impact than the device that hasn't had EDR for more than four weeks.

Software Vulnerabilities

The impact software vulnerabilities have on the Cork Cyber Score are based on the number of vulnerabilities in each bucket (critical, accelerated, routine) and the age of the vulnerability present on the device.

Each bucket has a service level objective (SLO). Critical vulnerabilities should be resolved within 5 days, while accelerated and routine should be resolved within 14 and 30 days respectively.

It may be difficult to patch vulnerabilities immediately, so newly discovered vulnerabilities have less impact on the score until they have been observed on the device for at least twice the age of its assigned SLO.

Claims History

The impact claims history has on the Cork Cyber Score is based on the age of a claim and its total loss.

Older claims have less of an impact than a claim that was opened this week. After a certain period of time a claim will no longer have an impact on the score.

Having years of successive coverage without any claims can reduce the impact of older claims. If a client had a claim 3 years ago, but has not had one for the past 2 years, the impact of the claim 3 years ago is reduced significantly.

FAQ

Will this score has an impact on future claim submissions?

Claims are handled case-by-case, the score is only a measure of risk for a given day, and all the information about your client during the claim are taken into consideration, as well as any other evidence you choose to provide. Cork never automatically denies claims.

Can I use this score to show my cyber insurance carrier?

Not today, we are hopeful to start working with cyber insurance carriers this year.

How can the score be improved?

Ensuring security tools are properly configured on each asset will help significantly as those should also resolve compliance events. Regular patching of software vulnerabilities will greatly improve the score over time as well.