UpSure
Insurance
Industries overviewStartups & ScaleupsTechnology & AISaaSFintechAI CompaniesSmart ManufacturingVC & PEInternationalHigh Net Worth
Insurance types
Insurance overviewShift to UpSureKey AssetsLiabilityManagement LiabilityProfessional IndemnityCyberM&AW&IIPMarine TransitTrade CreditSpecialist Risk
Advisory
Advisory overviewSecurity AdvisorStrategy & PartnershipsInsurtech DevelopmentCapital Raising
Company
Why UpSureAboutGuidesEducation CentrePartnersSponsorshipBlogContact
Submit ClaimSpeak to an ExpertDetailed QuoteInstant Quote
$395 valueCyberCert Gold credit

Cyber insurance with practical cyber hygiene value built in.

UpSure cyber clients may be eligible for a CyberCert Gold SMB1001 Level 3 credit, helping Australian SMBs, startups and technology businesses strengthen cyber readiness while arranging insurance.

Instant QuoteDetailed QuoteLearn about CyberCert
CyberCert and UpSure Gold certificate partnership graphic
Our ecosystem
UpSure
CyberCert
CFC
CBN
Steadfast
Why it matters

Directors need more than a policy sitting in a folder.

Cyber resilience is now a director-level governance issue. Boards, investors, customers and insurers increasingly want to see that a business is identifying, monitoring and improving its cyber posture, not simply reacting after an incident.

As a technology specialist broker, UpSure believes in adding practical value around the insurance placement. The CyberCert Gold credit helps eligible members move from cover arranged to controls improved, with a clearer path to demonstrating cyber hygiene.

Insurance readiness
Cyber hygiene uplift
Board-level evidence
What it is designed for

Advanced measures for compliance-heavy industries.

CyberCert Gold is designed for businesses in compliance-heavy sectors such as finance, healthcare and retail, where directors, customers, investors and insurers increasingly expect evidence of formal security governance and mature technical controls.

Requirements to achieve Gold

Gold introduces formal security governance and advanced technical maturity, including cybersecurity policies, incident response and AI usage policies. Controls such as EDR and email authentication, complemented by insurance, help create the foundations for higher-level resilience.

Formal cyber security policies and security governance
Incident response planning and director-level accountability
AI usage policies for teams adopting modern tools
Endpoint Detection and Response (EDR)
Email authentication controls
Cyber insurance sitting beside practical controls
Requirements
27 controls
Valid period
12 months
Assurance
Director attested
Standard
SMB1001:2026
Level
Level 3
FAQWhat are the 27 Gold requirements?

The checklist is kept here for transparency. CyberCert confirms the applicable assessment pathway, evidence and eligibility criteria.

  1. 01Engage a technical support specialist for your organization.
  2. 02Install and configure a firewall.
  3. 03Install anti-virus software on all organization devices.
  4. 04Automatically install tested and approved software updates and patches on all organization devices.
  5. 05Install TLS certificates on all public internet facing websites.
  6. 06Ensure all servers are updated and patched.
  7. 07Implement Endpoint Detection and Response (EDR).
  8. 08Ensure strong password hygiene is maintained.
  9. 09Ensure employee accounts do not have administrative privileges.
  10. 10Ensure employees have individual user accounts.
  11. 11Implement a password manager system.
  12. 12Multi-factor authentication (MFA) on all employee email accounts.
  13. 13MFA on all business applications and social media accounts.
  14. 14Ensure Remote Desktop Protocol (RDP) occurs only over Virtual Private Network (VPN) connections.
  15. 15Email Authentication and Anti-Spoofing.
  16. 16Implement a backup and recovery strategy for important digital assets.
  17. 17Purchase and maintain business or cyber insurance.
  18. 18Confidentiality agreement for all employees, contractors and third parties.
  19. 19Implement a policy with procedures to manage invoice fraud.
  20. 20Implement a visitor register.
  21. 21Implement a cybersecurity policy.
  22. 22Implement a response plan for cyber related incidents.
  23. 23Utilize secure methods of physical document destruction.
  24. 24Ensure all computer devices that store sensitive, private and confidential information are disposed of securely.
  25. 25Implement and maintain a digital asset register.
  26. 26Implement a policy for the responsible and secure use of AI technology.
  27. 27Conduct cybersecurity awareness training for all employees.
Other insurance SMBs need

Cyber usually sits beside a broader risk program.

Professional Indemnity

Protection for professional services, advice, implementation errors and customer financial loss allegations.

Learn more

Public, Products & Property

Cover for third-party injury, property damage, products exposure and key assets the business depends on.

Learn more

Management Liability

Designed to help directors and senior leaders manage governance, employment and statutory liability exposure.

Learn more

Cyber Risk Management

Support to improve cyber insurance readiness through practical controls, evidence and hygiene improvements.

Learn more
How it works

Four steps from quote to practical cyber uplift.

01

Start with eligibility

Choose the instant or detailed quote pathway and tell us about the business, activities, revenue, data profile and current controls.

02

Place the right cover

If the risk fits the instant pathway, it can move faster. If it needs nuance, the UpSure broking team reviews the risk properly.

03

Bind the policy

Once the policy is bound, your coverage documents confirm the insurance arranged and the relevant policy details.

04

Receive the credit

Eligible clients receive the CyberCert Gold credit details with their coverage documents, helping turn cover into a practical cyber improvement pathway.

Choose the quote path that fits the risk.

Use Instant Quote for eligible straightforward risks, or choose Detailed Quote when the business needs a broker-reviewed pathway, broader market access or more context around the placement.

Information is general in nature and does not take into account your objectives, financial situation or needs. Cover is subject to the terms, conditions and exclusions of the relevant policy.

Instant QuoteDetailed Quote