CyberSmart
All-in-one cybersecurity platform and cyber insurance for small and medium businesses
Overview
CyberSmart is a cybersecurity compliance and insurance platform for small and medium-sized enterprises (SMEs), combining device monitoring, security awareness training, vulnerability management, and bundled cyber insurance in a single cloud-based product. The company targets businesses at the smaller end of the SMB market -- typically 10 to 50 employees -- that lack in-house security staff. It serves over 7,000 businesses worldwide through a partner-led channel of more than 1,000 managed service providers, value-added resellers, and insurance distributors.
The platform delivers continuous device monitoring and automated patch management across Windows and macOS endpoints, paired with phishing simulation and e-learning modules for security awareness training. CyberSmart holds a licensed Certification Body status under the IASME Consortium, enabling it to guide customers through UK government-endorsed Cyber Essentials and Cyber Essentials Plus certification -- positioning it as the UK's largest provider of these certifications. For insurers and MSPs, CyberSmart also offers a dedicated partner program that positions the platform as a risk-reduction layer within their own product stacks.
Founded in 2016 and graduating from GCHQ's Cyber Accelerator in 2017, CyberSmart has raised USD 26.98M in total across a Series A (2021, USD 10M led by IQ Capital and Eos Venture Partners) and a Series B (2023, GBP 12.75M led by Oxx). Its bundled cyber insurance product, underwritten by AIG and brokered by Sutcliffe Insurance Brokers Ltd (FCA #306068), has recorded zero claims since launch as of early 2023. The company holds ISO 27001 certification and runs AWS infrastructure in UK and Irish regions.
Products & Services
Active Protect
Continuous 24/7 endpoint protection and device monitoring for Windows and macOS desktops and mobile devices. Covers real-time vulnerability scanning, configuration checks, and alerting with bulk or individual enrollment.
Key Features
- Continuous device monitoring with real-time alerts
- Hardware assessment and configuration validation
- Bundled cyber insurance (AIG-underwritten, First Response within 1 hour of claim)
Target Users: SMBs with 10-50 employees; also sold via MSP/VAR partners
Patching
Automated third-party application patch management covering 350+ applications. Keeps devices current without manual IT intervention.
Key Features
- Automated patching for 350+ third-party applications
- No manual IT intervention required
- Integrated with Active Protect enrollment
Target Users: SMBs without dedicated IT staff
Security Awareness Training (Learn and Phish)
Curated training program with 18 modules and phishing simulation. Tracks completion and provides real-time reporting across the organization.
Key Features
- 18 training modules with completion tracking
- Phishing simulation (Phish) to test employee resilience
- Customizable branding for partner deployments
Target Users: Employees at SMB customers; compliance-conscious organizations
Vulnerability Manager
Continuous vulnerability detection across enrolled devices with actionable remediation guidance. Surfaces prioritized issues to reduce attack surface without requiring security expertise.
Key Features
- Real-time vulnerability monitoring across enrolled endpoints
- Actionable remediation guidance
- Continuous rather than point-in-time scanning
Target Users: SMBs, channel partners managing multiple clients
Cyber Essentials Certification
Guided certification service for the UK government-backed Cyber Essentials and Cyber Essentials Plus schemes, delivered through CyberSmart's IASME-licensed Certification Body status. Also supports Defence Cyber Certification (DCC), Essential 8 (Australia), CSMv4, and NIS2 compliance frameworks.
Key Features
- Certification achievable within 24 hours for eligible businesses
- Licensed to certify under IASME Consortium
- Multi-framework support (Cyber Essentials, Cyber Essentials Plus, DCC, Essential 8, NIS2)
Target Users: UK SMBs, defence contractors, businesses seeking government supply chain eligibility
Privacy Toolbox
GDPR compliance workflow tools including Subject Access Request management and a privacy policy builder. Helps SMBs maintain UK and EU data protection obligations.
Key Features
- Subject Access Request (SAR) workflow management
- Privacy policy builder
- UK/EU GDPR compliance focus
Target Users: SMBs handling personal data under UK GDPR or EU GDPR
At a Glance
- Founded
- 2016
- Headquarters
- London, UK
- Employees
- 51-200
- Funding
- Series B
Category & Focus
- Category
- Specialty Solutions
- Subcategories
- Cyber Insurance Cybersecurity Compliance Security Awareness Training Endpoint Protection
- Insurance Verticals
- Specialty/E&S
- Target Customers
- Carriers, Brokers, MGAs/MGUs, Agents/Agencies
Customers
- NHS / Healthcare organizations
- Education sector customers
- Defence contractors
- Retail and payments businesses
Similar Companies
-
Spot InsuranceDigital injury insurance for athletes, adventurers, and active individuals -
NoCell TechnologiesPreventing distracted driving before it happens -- proactive cell phone management for commercial fleets -
SSeismicAIEarthquake early warning system that provides rapid seismic alerts to reduce business disruption and insurance claims severity.
-
OyenMalaysia's digital pet insurance platform for cats and dogs -
Red Planet SoftwareInsurance premium finance software for funders and brokers -
RedefindCryptocurrency and digital asset insurance platform using cryptographic proof of ownership
Last updated: 2026-06-13