<?xml version="1.0" encoding="UTF-8"?><ns2:project xmlns:ns1="http://gtr.rcuk.ac.uk/gtr/api" xmlns:ns2="http://gtr.rcuk.ac.uk/gtr/api/project" xmlns:ns3="http://gtr.rcuk.ac.uk/gtr/api/fund" xmlns:ns4="http://gtr.rcuk.ac.uk/gtr/api/person" xmlns:ns5="http://gtr.rcuk.ac.uk/gtr/api/project/outcome" xmlns:ns6="http://gtr.rcuk.ac.uk/gtr/api/organisation" ns1:created="2026-06-22T07:57:45Z" ns1:href="http://gtr.ukri.org/gtr/api/projects/9B74FE2A-849A-4D31-BA38-FA20E112BDD7" ns1:id="9B74FE2A-849A-4D31-BA38-FA20E112BDD7"><ns1:links><ns1:link ns1:href="http://gtr.ukri.org/gtr/api/persons/A9232012-303E-40A8-89DD-79A4FF4D58D4" ns1:rel="PM_PER"/><ns1:link ns1:href="http://gtr.ukri.org/gtr/api/organisations/2D29F69B-D1C7-42BE-9EE7-B7CF71AB627C" ns1:rel="LEAD_ORG"/><ns1:link ns1:href="http://gtr.ukri.org/gtr/api/organisations/2D29F69B-D1C7-42BE-9EE7-B7CF71AB627C" ns1:rel="PARTICIPANT_ORG"/><ns1:link ns1:end="2025-02-28T00:00:00Z" ns1:href="http://gtr.ukri.org/gtr/api/funds/B73BABC6-0467-4279-A487-F26BEE2204AD" ns1:rel="FUND" ns1:start="2024-08-31T23:00:00Z"/></ns1:links><ns2:identifiers><ns2:identifier ns2:type="RCUK">10139707</ns2:identifier></ns2:identifiers><ns2:title>ARMOREX - Next Generation Cyber Insurance</ns2:title><ns2:status>Closed</ns2:status><ns2:grantCategory>Collaborative R&amp;D</ns2:grantCategory><ns2:leadFunder>Innovate UK</ns2:leadFunder><ns2:abstractText>Cybersecurity is a major medium-term threat to the UK economy with SMEs, which make up 99% of UK businesses, being particularly vulnerable. According to the 2021 Joint Cybersecurity Advisory (CISA/NSA/FBI/ACSC)/NCSC), ransomware, together with the increased use of Ransomware-as-a-Service (RaaS), is the biggest cyber threat facing the UK. A report produced by RPC shows that only a fraction of ransomware attacks are reported to the ICO, 654 in 2021 representing a 100% increase over the 326 in 2020\. Many SMEs face financial, technical skills and human resource challenges. According to the Cyber Security Breaches Survey 2021 (UK.GOV), only 13% of small businesses and 17% of medium-sized businesses had a specific cybersecurity insurance policy in 2021\. SMEs with inadequate cybersecurity in place also run the risk of large fines being enforced by the ICO.

Security certification schemes such as Cyber Essentials, the NCSC-backed cyber security initiative, aims to protect SMEs against the most common forms of cyberattacks. Although Cyber Essentials has admirable intentions, the scheme has several shortcomings:

* self-assessment and checklist format

* does not adequately address advanced cyber threats such as ransomware and supply chain attacks

Being Cyber Essentials compliant will not necessarily reduce cyber insurance premiums for SMEs and it does not negate the risk of ransomware attacks or possible ICO fines. Many SMEs lack the time, money and resources to actively monitor their IT systems, especially those with less than 50 employees. Being unable to prove they have robust cybersecurity in place means SMEs pay high cyber insurance premiums - if they can afford it.

The mission of ARMOREX is to help insurance companies provide better insurance policies to the SMEs by providing solutions for real-time monitoring of an organization's IT infrastructure and device usage and calculate the organizational cyber risk score that can be used by the insurance providers to provide more customised but inclusive cyber insurance covers. Our pioneering products are aimed at bringing advanced cyber-security risk assessment tools to enable Dynamic Pricing in cyber insurance, helping the UK's businesses stay cyber-resilient in the ever-evolving landscape of cyber threats, and contributing to the UK's objective of becoming a more secure and innovative nation.</ns2:abstractText></ns2:project>