Customer Story

A Successful Due Diligence Using Cyber Risk Quantification

Unéo, a major player in social protection for military forces in France, supports its members throughout their personal and professional lives.

Employees

1200+

Industry

Health & Welfare

Product

Enterprise

Unéo

Ludovic Barbier, CISO

Sapere aude - Osez savoir - Dare to know – 

Benefits

  • Time saving in producing the response to the RFP.
  • Understandable, effective and granular demonstration of the elements of defensive maturity.
  • Facilitated communication with internal & external stakeholders.
  • Continuous improvement in defensive maturity.

Unéo, a major player in social protection for military forces in France, supports its members throughout their personal and professional lives.

  • Health & Welfare
  • 1,200 employees
  • + 600,000 members
  • Services tailored to the needs of military personnel and their families

Mutuelle Unéo & quantifying cyber risk: aligning decisions with risk appetite.

Back in 2020, when Unéo was assessing the benefits of subscribing a cyber insurance policy, the company decide to use Citalid’s Cyber Risk Quantification solution to inform its decision-making.

The contribution of Cyber Risk Quantification (CRQ) for Unéo was confirmed when, in 2024, the company won a RFP (Request for Proposal) issued by a french Ministry and was able to demonstrate its cyber risk resilience.

In addition, the Citalid solution has been adopted by other business lines within the company: the risk department uses the platform to demonstrate its risk management strategy while Unéo’s finance department uses it to meet some of the DORA directive’s requirements.

Use of financial metrics for communication purposes as part of a RFP

As part of the process of responding to the Due Diligence carried out from the RFP, Unéo used the data generated by the Citalid platform to demonstrate its defensive maturity in the face of cyber risk and to justify its decision not to subscribe a cyber insurance.

Based on actionable data and financial metrics, Unéo was able to provide a complete view of its risk exposure. The dynamic enrichment of Citalid’s calculation models with Cyber Threat Intelligence (CTI) data convinced Unéo that it risk was controlled and decisions were taken in an informed manner.


The Cyber Risk Quantification software is an indispensable tool for our organisation. It allows me to quickly and accurately demonstrate the impact of security measures.

Thanks to the financial metrics provided by Citalid, I can demonstrate to our finance department that my investments can transform a major risk into a controlled one.

This level of clarity makes budgetary decisions much easier. In addition, the software assesses the relevance of taking out cyber insurance, providing a clear view of the benefits and costs.

This tool is invaluable not only for the CISO, but also for business teams, who can use it to justify their decisions to the supervisory authorities. In short, it's an essential tool that I couldn’t miss, unlike other cyber softwares where the question still arises.


The Citalid solution

  • Risk Exposure Visualization
    • Quantification based on the FAIR method
    • Risk mapping
    • Financial indicators for a common understanding
    • Ready-to-use reports and dashboards
  • Threat-contextualized Risk
    • Cyber Threat Intelligence (CTI) data natively integrated into impact calculations
    • Attack frequency simulations
    • Expertise in strategic CTI and knowledge of attacker techniques, tactics and protocols.
  • Improved Cyber Resilience
    • Proposed safety reduction measures
    • Calculating the ROSI (Return on Security Investment) of safety recommendations
    • Attack/defence simulations (RedTeam)

Get started

Discover our Cyber Risk Quantification platform

Citalid newsletter

Newsletter

Arm yourself with knowledge

When it comes to managing cyber risk, knowledge is your best defence. Make sure you’re always up to date, with the latest cyber, insurance, and geopolitical news sent straight to your inbox.