Who is cyber risk modeling for?

Cyber risk modeling is designed for insurers and reinsurers underwriting cyber insurance or managing exposure to systemic cyber events. It is especially relevant for underwriting leaders, portfolio managers, actuaries, and capital management teams who need a structured view of accumulation risk and tail exposure.

Do insurers and reinsurers need cyber risk modeling?

As cyber becomes a peak peril, relying solely on historical loss data or traditional catastrophe models is insufficient. Cyber risk modeling helps (re)insurers quantify systemic exposure, evaluate capital adequacy, stress test portfolios, and prepare for low-frequency, high-severity events.

What should I look for in a cyber risk modeling solution?

A strong cyber risk modeling solution should combine probabilistic and scenario-based methodologies, use high-quality and attributed data, and provide transparency into assumptions and model mechanics. It should also support model validation, governance requirements, and defensible pricing and capital decisions.

What is a custom view of risk in cyber risk modeling?

A custom view of risk allows (re)insurers to adjust model assumptions and parameters to reflect their underwriting philosophy, portfolio composition, and risk appetite. This ensures that risk outputs align with internal expertise rather than relying solely on vendor default settings.

How does cyber risk modeling help manage accumulation risk?

Cyber risk modeling identifies concentrations of exposure, such as shared cloud providers, software dependencies, or Single Points of Failure (SPoFs), that could trigger correlated losses across a portfolio. This enables (re)insurers to better understand aggregation risk and diversify or structure reinsurance accordingly.

How does cyber risk modeling improve pricing and capital allocation?

Cyber risk modeling provides a data-driven view of expected loss, volatility, and tail risk. This supports more consistent underwriting decisions, strengthens pricing confidence, and helps reinsurers allocate capital more effectively in the face of systemic cyber threats.

PRA DyGIST 2026 Response Center: Insights to help you act with confidence

Welcome to CyberCube’s DyGIST 2026 hub. This page brings together our weekly updates, expert commentary, and practical insights on the PRA’s Dynamic General Insurance Stress Test.

Throughout the exercise, we will use this space to share what is unfolding and what it means for the market. We will consider how firms can respond with confidence under pressure. In a live scenario shaped by changing assumptions, compressed timelines, and incomplete information, the real challenge is making decisions you can defend.

What is the PRA’s DyGIST 2026 exercise?

The Prudential Regulation Authority’s Dynamic General Insurance Stress Test, or DyGIST 2026, is a live-market stress test designed to assess how the insurance sector responds to a fast-moving systemic shock.

Unlike a static stress test built around predefined assumptions, DyGIST unfolds in stages. Participants receive new information as the exercise progresses where they must assess impacts and update assumptions. They then have to respond in real time, making it a practical test not only of solvency and exposure management, but of decision-making and responsiveness under pressure.

Why DyGIST matters

DyGIST matters because it reflects the real operating conditions organizations face during a live market event. For firms operating in the London and Lloyd’s markets, DyGIST is an important test of how well risk, portfolio management, analytics, and leadership come together when the scenario moves quickly.

For insurers, reinsurers, and brokers, it's vital to get to an answer that is both quick and robust enough to support defensible decisions and credible stakeholder communication. This makes this exercise vital for demonstrating crisis responsiveness, clarifying decision-making pathways, and strengthening the market’s collective ability to navigate complex aggregation events.

Dygest_WEB-Banner_1920x1080px_V2

CyberCube's Point of View

Our perspective: DyGIST is a test of defensible decision-making

Much of the market conversation around DyGIST focuses on preparedness, operational response, or technical capability. While these are important, there is more to defensible decision-making.

In a live exercise, the real pressure point is decision-making under uncertainty. Firms are asked to interpret emerging events and assess exposure rapidly, often without perfect information. In that environment, raw outputs are only useful if they support decisions that can be explained and defended.

CyberCube's approach is built around defensible insights so clients can act with clarity and confidence. We help firms move beyond black-box outputs and toward decisions they can stand behind in real time.

CyberCube's unique approach

CyberCube’s approach to DyGIST is built on three foundations that enable decision-making under pressure.

Model validation

In a live scenario, confidence in the model matters as much as speed. CyberCube helps clients work from models they can defend to internal stakeholders, regulators, and the wider business.

This reduces the last-minute scrambling that often happens when teams are forced to reconcile inconsistent assumptions or explain outputs they cannot fully stand behind.

Data quality

Decision-making depends on data and analytics that hold up under scrutiny. CyberCube helps clients work with transparent, auditable, insurance-relevant data and portfolio metrics that remain reliable as scenarios evolve. This enables decisions grounded in exposure data that supports credible action in real-world insurance contexts.

Institutional expertise

Our team brings deep experience in cyber risk, accumulation, and how firms respond during live market events. We know how scenarios unfold, and the challenges that come with that, such as how reporting pressure builds and where decision bottlenecks tend to emerge. Understanding this pattern is vital when clients need to interpret new developments quickly and respond with confidence.

Activating our CAERS support

CyberCube is participating in this event alongside our clients, meaning we do not receive advanced notice of event details. As the scenario unfolds, we are activating our Cyber Aggregation Event Response Service (CAERS) to support the market through this stress test.

CAERS is designed to help firms interpret cyber aggregation scenarios, assess potential impacts, and support decision-making during periods of heightened uncertainty. During DyGIST, that support includes:

Real-time Analytics: Timely intelligence and analytical support as the scenario evolves.
Modeling Guidance: Quantitative and qualitative insights to help firms assess exposure, and support internal and regulatory reporting requirements.
Strategic Support: Structured guidance to help clients understand potential impacts, evaluate response options, and move forward with greater confidence.

Our role goes beyond providing outputs, we help clients make decisions they can explain, justify, and act on.

Weekly DyGIST Updates

DyGIST runs over a four-week period, with new developments and escalating pressure introduced as the exercise progresses. Each week, we will share updates on the latest scenario developments, key themes emerging across the market, and the insights we can provide to help clients understand potential impacts and response priorities.

This section will serve as the running timeline of our public commentary throughout the exercise.

Week 1

As the first stage of the exercise begins, we will share our view on the initial scenario, what it signals for the market, and the early questions firms should be asking as they assess exposure and response requirements.

Week 2

As the scenario develops, we will examine how assumptions are shifting and what firms need to understand in order to keep decision-making aligned with emerging conditions.

Week 3

By this stage, the exercise is likely to test not only analytics but judgment. We will focus on the implications of scenario escalation, potential portfolio impacts, and the practical challenges firms face when response timelines tighten.

Week 4

In the final stage of the exercise, we will look at what the scenario has revealed, what decisions mattered most, and what firms can take away from the exercise as they assess resilience going forward.

Final recap

At the conclusion of DyGIST 2026, we will publish a summary of the key themes, decisions, and market implications that emerged across the exercise.

Frequently Asked Questions (FAQs)

The Dynamic General Insurance Stress Test (DyGIST) is a semi-live crisis simulation conducted by the Bank of England’s Prudential Regulation Authority. Spanning a focused 4-week period in May 2026, it assesses the UK general insurance sector’s ability to respond to a market-wide adverse event in real-time.
Unlike traditional stress tests that use predefined, static shocks, DyGIST is "dynamic." The PRA releases sequential "injects" of information throughout the live phase, requiring participants to mobilize quickly, assess evolving impacts, and refine their responses as the crisis unfolds.

There are three primary goals: (1) assessing the industry's solvency and liquidity resilience to systemic stress, (2) evaluating the effectiveness of insurers' risk management and executive decision-making, and (3) informing the regulator’s own supervisory response to real-world market-wide events.
The Cyber Aggregation Event Response Service (CAERS) is CyberCube’s specialized framework for supporting (re)insurers and brokers during major cyber incidents. It integrates deep threat intelligence with advanced analytical models to deliver rapid loss estimates, scenario modeling guidance, and strategic market insights.
Please use the DyGIST-specific support mailbox for questions related to the event, or through your client account manager: DyGIST2026@cybcube.com 
Following the conclusion of the live phase and the submission of final reports by participants in July, the PRA will conduct a sector-wide analysis. A summary of the results and insights into sector resilience is expected to be published by the PRA in December 2026. CyberCube will also publish our summation of our findings throughout the exercise and in a report once the exercise has concluded.
Having worked with Lloyd’s on complex scenarios before, CyberCube brings deep experience in tailoring systemic risk assessments for the unique needs of the London market.

Our unique approach ensures firms can meet both immediate "speed layer" estimates and long-term "accuracy layer" reporting.

CyberCube's analytics model over 70% of global cyber premiums and are utilized by 75% of the top 40 cyber insurance carriers. This market-wide adoption provides a standardized "common language" of risk.
Portfolio Manager and Single Point of Failure Intelligence (SPoF) allow firms to quickly identify digital supply chain concentrations and model "directionally correct" loss estimates within the tight 48-hour windows demanded by dynamic exercises. Portfolio Manager will provide the broad scenario library needed to assess cumulative impacts as scenario injects are released.

CyberCube will be utilizing our full product suite to help clients understand the risk accumulation and to help model loss alongside these tools.

Follow our DyGIST 2026 coverage

We will continue to update this page throughout the exercise with analysis, commentary, and practical perspectives on what the scenario means for the market.

To learn more about CyberCube’s approach or access support during DyGIST 2026, please contact your account manager or our dedicated mailbox via DyGIST2026@cybcube.com.

Enabling exceptional outcomes for our clients

Industry Awards

PRA DyGIST 2026 Response Center

PRA DyGIST 2026 Response Center: Insights to help you act with confidence