Skip to main content
Marsh Logo

Fix up your insurance to WIN a 2026 Toyota AFL Grand Final experience*! Find out more

*Terms and conditions apply. Entry upon purchase of applicable insurance policy. Authorised under ACT Permit No. TP 26/00594. SA permit no. T26/450. AFL Authorised GF Promotion GFAFL26/18.

Cyber-security insurance for Australian businesses

Cyber incidents can interrupt operations, expose sensitive information, and create financial losses. Cyber insurance can help businesses respond to cyber attacks, restore systems, and manage costs linked to cyber-crime and data breaches.

Get a quote

Why cyber risk matters for businesses

Many small and medium enterprises (SMEs) rely on digital systems to store information, communicate with customers, and manage daily operations.

If access to systems such as invoicing platforms, booking tools, or digital records is disrupted, operations may be affected. Cyber incidents such as phishing, ransomware, and unauthorised access can interrupt systems and expose sensitive data.

Cyber insurance may help businesses manage response costs and operational disruption following a cyber event.

Cyber insurance options for different business sizes

Cyber insurance solutions may vary depending on business size, revenue, and digital exposure. The cover options below show typical cyber insurance structures available for different types of businesses.

Product Icon

Micro cyber

Cyber insurance designed for smaller businesses managing basic cyber risks and limited digital exposure.

  • Businesses with annual revenue up to $2 million

  • $100,000 aggregate cyber cover limit

  • $50,000 cyber crime sub-limit

  • $0 deductible

  • Starting premium from $400 plus $50 administration fee

  • Eligibility may require no cyber incidents in the previous three years where a direct financial loss of >$10k was incurred

Get a quote
Product Icon

Mid-size SME cyber

Cyber insurance options designed for small-to-medium businesses managing increasing digital operations.

  • Businesses with annual revenue up to $10 million

  • Cyber cover limits from $500,000 to $3 million per claim

  • $250,000 cyber crime sub-limit

  • $0 deductible

  • Starting premium from $910 plus $150 administration fee

  • Eligibility criteria may apply

Get a quote
Product Icon

Large SME cyber

Cyber insurance options for larger SMEs operating with more complex systems and digital operations.

  • Businesses with annual revenue between $10 million and $20 million

  • Cyber cover limits from $500,000 to $3 million per claim

  • $250,000 cyber crime sub-limit

  • $5,000 deductible

  • Starting premium from $2,405 plus $150 administration fee

  • Eligibility requirements may apply

Get a quote

Need a customised cyber insurance solution?

If your business does not meet the eligibility requirements above, Marsh advisors may still be able to help arrange cyber insurance solutions suited to your organisation.

Different industries and risk profiles may require customised cyber cover.

Get a quote

Understanding cyber insurance cover

selected option

First-party cyber cover

First-party cyber cover helps businesses manage costs that arise directly from cyber incidents affecting their systems, data, or operations.

Get a quote

What’s covered

  • Costs to investigate and respond to a cyber incident
  • System restoration and data recovery after cyber events
  • Business interruption resulting from cyber incidents
  • Crisis management or legal support following an attack
  • Certain cybercrime losses, including invoice manipulation
  • Cyber extortion costs related to ransomware or extortion demands

Where cover can extend

  • Public relations costs related to reputational damage
  • Replacement or remediation of devices or systems permanently rendered inoperable by malicious activity

Third-party cyber cover

Third-party cyber cover helps manage claims made by customers, regulators, or other parties following a cyber incident involving sensitive information.

Get a quote

What’s covered

  • Privacy breach liability
  • Claims from unauthorised disclosure of information
  • Legal defence costs following cyber incidents
  • Regulatory investigations and penalties where insurable
  •  Payment Card Industry (PCI) compliance cost

Where cover can extend

  • Media liability exposures for defamation and intelectual property rights infringements arising from media content

Cyber response and security support

Some cyber insurance solutions may provide access to services designed to help businesses manage cyber risks. These services may include cyber threat alerts, vulnerability scanning tools, and technical support following cyber incidents. Incident response specialists may assist with investigating attacks, containing threats, and supporting system recovery after a cyber event.

Cover inclusions

Placeholder Image

Incident response services

Immediate 24/7 access to incident response services following an actual or suspected cyber-attack.

Placeholder Image

+ Cybercrime option

An additional option with sub-limited coverage for fraudulent transfer of funds.

Placeholder Image

Extortion payments

Ransom reimbursement (where it is legal for insurers to pay a ransom) and access to specialist ransom negotiators.

Popular cover we can arrange for your business

Product Icon

Business insurance

A complete business insurance solution tailored to fit small and medium businesses.

Find out more
Product Icon

Professional indemnity

Protect your business against claims of misleading advice, breach of duty or negligence.

Find out more
Product Icon

Public liability insurance

Protect your business against third-party accidents and costly legal fees.

Find out more
Product Icon

Employee benefits

Benefits for employees to help retain and attract talent. Health, life and income protection.

Find out more
Product Icon

Cybersecurity insurance

Protect your business from cyber attacks, data breaches and cyber crime.

Find out more
Product Icon

Management liability cover

Protect your business against management and operational risks with management liability cover.

Find out more

Frequently asked questions

Cybersecurity insurance helps businesses manage financial losses and response costs following cyber incidents such as hacking or data breaches.

A cyber incident generally refers to unauthorised access, disruption, or attack on computer systems, networks, or digital data.

First-party cover may help manage costs experienced directly by the business, such as investigation, system restoration, and business interruption.

Third-party cyber liability applies when customers or regulators bring claims after a cyber incident involving data or privacy.

Cyber crime cover may respond to financial losses caused by fraudulent electronic communications, such as invoice manipulation.

Businesses that rely on digital systems, process online payments, or store sensitive information may consider cyber insurance.

Many cyber policies provide access to incident response teams via 24/7 hotlines that help investigate incidents and support system recovery.

Many cyber insurance solutions provide access to 24/7 incident response services that help investigate cyber incidents and coordinate response actions.

Cyber-security insurance articles and resources

Placeholder Image

Invoice fraud risks for Australian businesses

08/06/2026

Invoice fraud is a common cyber risk for Australian SMEs. Learn how payment redirection scams happen, the financial impact, and how cyber insurance may help.
Placeholder Image

Cyber crime and your business – building your Game Plan

23/04/2026

When it comes to cyber crime, preparedness isn’t just for large organisations. What could a cybersecurity incident cost your business?
Placeholder Image

Cyber risk and data breach cover

23/04/2026

A practical guide to cyber risk and data breach cover for Australian SMEs, explaining first-party and third-party cover and responding to cyber incidents.
Placeholder Image

Cyber first-party vs third-party liability

23/04/2026

Understand cyber first-party and third-party liability. Learn how cyber incidents can disrupt operations, cause losses and create claims for businesses.

Marsh Advantage Insurance Pty Ltd (ABN 31 081 358 303, AFSL 238369) (“Marsh”) arranges the general insurance (i.e. not the Discretionary Trust Arrangement) and is not the insurer. This page contains general information and does not take into account your individual objectives, financial situation or needs. For full details of the terms, conditions and limitations of the covers, refer to the specific policy wordings and/or Product Disclosure Statements available from Marsh on request. Marsh makes no representation or warranty concerning the application of policy wordings or the financial condition or solvency of insurers or re-insurers. Marsh makes no assurances regarding the availability, cost, or terms of insurance coverage. Any statements concerning actuarial, tax, accounting, or legal matters are based solely on our experience as insurance brokers and risk consultants and are not to be relied upon as actuarial, accounting, tax, or legal advice, for which you should consult your own professional advisors. The Discretionary Trust Arrangement is issued by the Trustee, JLT Group Services Pty Ltd (ABN 26 004 485 214, AFSL 417964) (“JGS”). Any advice or dealing in relation to the Discretionary Trust Arrangement is provided by JLT Risk Solutions Pty Ltd (ABN 69 009 098 864, AFSL 226 827) (“JLT”). JGS and JLT are businesses of Marsh McLennan. The cover provided by the Discretionary Trust Arrangement is subject to the Trustee’s discretion and/or the relevant policy terms, conditions and exclusions.

LCPA 26/2672