Wikilah admin: Created page with "== Corporate profile and regulatory identifiers == 🏢 '''Corporate trajectory.''' Cogitanda is a Germany-origin cyber risk specialist spanning cyber insurance distribution, underwriting design, and cyber risk services. The pre-insolvency operating model functioned as an Assekuradeur — the German market equivalent of an MGA/MGU operating under delegated authority — paired with in-house cyber prevention and claims/incident coordination capabilities.
2026-03-09T03:18:25Z

Created page with "== Corporate profile and regulatory identifiers == 🏢 '''Corporate trajectory.''' Cogitanda is a Germany-origin cyber risk specialist spanning cyber insurance distribution, underwriting design, and cyber risk services. The pre-insolvency operating model functioned as an Assekuradeur — the German market equivalent of an MGA/MGU operating under delegated authority — paired with in-house cyber prevention and claims/incident coordination capabilities.<ref name="heukin..."

New page
== Corporate profile and regulatory identifiers ==

🏢 '''Corporate trajectory.''' Cogitanda is a Germany-origin cyber risk specialist spanning cyber insurance distribution, underwriting design, and cyber risk services. The pre-insolvency operating model functioned as an Assekuradeur — the German market equivalent of an MGA/MGU operating under delegated authority — paired with in-house cyber prevention and claims/incident coordination capabilities.<ref name="heuking">{{cite web |title=Heuking unterstützt die Cogitanda-Gruppe beim Verkauf aus der Insolvenz an DGC AG |url=https://www.heuking.de/de/news-events/aktuelle-meldungen/artikel/heuking-unterstuetzt-die-cogitanda-gruppe-beim-verkauf-aus-der-insolvenz-an-dgc-ag.html |publisher=Heuking |access-date=9 March 2026}}</ref> A material corporate discontinuity occurred in late 2024 to early 2025: multiple Cogitanda group entities entered insolvency proceedings and the operating business was transferred via an asset deal to a subsidiary of DGC AG,<ref name="jimmy">{{cite web |title=COGITANDA Cyber sind wir — Kundenflyer |url=https://jimmy-versicherung.de/wp-content/uploads/COGITANDA-Cyber-sind-wir.-Kundenflyer.pdf |publisher=Jimmy Versicherung |access-date=9 March 2026}}</ref> with the Cogitanda brand retained and operations stated as continuing.<ref name="luther">{{cite web |title=Luther advises DGC Group on the acquisition of cyber insurer Cogitanda |url=https://www.luther-lawfirm.com/en/newsroom/press-releases/detail/luther-advises-dgc-group-on-the-acquisition-of-cyber-insurer-cogitanda |publisher=Luther Rechtsanwaltsgesellschaft |access-date=9 March 2026}}</ref>

🏛️ '''Pre-insolvency group structure.''' The documented Cogitanda group perimeter during the insolvency and sale process comprised five entities, all insolvent at the group level:<ref name="heuking"/>

* COGITANDA Dataprotect AG (Germany)
* COGITANDA Risk Prevention GmbH (Germany; cyber prevention services)
* COGITANDA Insurance Services GmbH (Germany; Assekuradeur operations)
* COGITANDA Claims Services GmbH (Germany; claims/incident services)
* COGITANDA Managed Services GmbH (Germany; managed services)

🔗 '''Integrated model.''' Buyer-side counsel characterised the group's integrated model as encompassing delegated-authority cyber policy placement with multiple risk carriers, end-to-end claims management on behalf of those carriers, and prevention services for insureds and brokers.<ref name="heuking"/> Following the acquisition, the Cogitanda brand continues under the DGC group umbrella, with the current website listing DGC as copyright holder and indicating a headquarters address in Flensburg, Germany.<ref name="cogitanda">{{cite web |title=Cogitanda |url=https://www.cogitanda.com/ |publisher=Cogitanda / DGC AG |access-date=9 March 2026}}</ref>

📋 '''Regulatory status.''' Cogitanda operates as an Assekuradeur placing coverage with multiple external insurers as risk carriers and performing outsourced claims management for those insurers, rather than retaining insurance risk on its own balance sheet.<ref name="heuking"/> Trade coverage reports a relationship with Lloyd's syndicate IQUW providing capacity, though no Lloyd's coverholder number is disclosed in accessible materials.<ref name="reinsurancenews">{{cite web |title=Cogitanda partners with Everest and IQUW to expand cyber offering |url=https://www.reinsurancene.ws/cogitanda-partners-with-everest-and-iquw-to-expand-cyber-offering/ |publisher=Reinsurance News |access-date=9 March 2026}}</ref> The operating model — broker/MGA-like with delegated authority and multiple risk carriers — typically implies reliance on German insurance distribution permissions rather than an insurer authorisation.<ref name="heuking"/>

📊 '''Scale indicators.''' During the preliminary insolvency process, the insolvency administrator stated total group employees were approximately 150, secured through insolvency wage pre-financing to the end of January 2025.<ref name="brinkmann">{{cite web |title=Cogitanda-Gruppe im vorläufigen Insolvenzverfahren |url=https://www.brinkmann-partner.de/cogitanda-gruppe-vorlaufigen-insolvenzverfahren/ |publisher=Brinkmann & Partner |access-date=9 March 2026}}</ref> A separate counsel statement references approximately 70 employees secured with the asset transfer.<ref name="heuking"/> Following the acquisition, the DGC group increased to over 100 employees across Flensburg and Cologne — a group-wide figure rather than Cogitanda standalone.<ref name="luther"/>

{{Section separator}}
== Founders, leadership, and governance ==

⚰️ '''Founder.''' Jörg Wälder founded Cogitanda and served as its CEO.<ref name="assekurata">{{cite web |title=Assekurata Studie Cyber Kriegsklausel |url=https://www.assekurata-rating.de/wp-content/uploads/2021/09/Assekurata_PM_03_05_2022_Assekurata_Studie_Cyber_Kriegsklausel.pdf |publisher=Assekurata |date=May 2022}}</ref><ref name="luther"/> His sudden death in 2023 is cited as a key destabilising event that preceded the company's economic difficulties and subsequent insolvency filing.<ref name="luther"/>

👥 '''Current leadership.''' Post-acquisition materials confirm continuity of the core team, though no full role-by-role roster is publicly available.<ref name="luther"/> Named executives referenced in company-controlled channels include Walid Schalesi (Group Chief Actuary) and Alain Bianco (Group Chief Underwriting Officer).<ref name="linkedin360">{{cite web |title=COGITANDA 360° CyberProtection post |url=https://de.linkedin.com/posts/cogitanda_cogitanda-360-cyberprotection-cyberversicherung-activity-7399731293942620160-H86k |publisher=LinkedIn |access-date=9 March 2026}}</ref><ref name="assekurata"/> Jens Lison was quoted in 2024 capacity and market expansion coverage as CEO of COGITANDA Dataprotect AG, though this reference predates the acquisition and does not confirm current role.<ref name="reinsurancenews"/>

🔍 '''AXA connection.''' No AXA connection was identified in the reviewed capacity-provider references or acquisition communications.<ref name="luther"/>

{{Section separator}}
== Business model and operating footprint ==

🛡️ '''Full-service cyber specialist.''' Cogitanda's model encompasses three pillars: delegated-authority placement of cyber insurance products with multiple external risk carriers (Risikoträger), end-to-end cyber claims management services performed for those carriers, and cyber risk prevention services — including IT audits, monitoring, and related offerings — delivered to policyholders and broker networks.<ref name="heuking"/> The current website positions this combined offering as "360° cyber protection," integrating prevention, monitoring, insurance, and crisis management alongside DGC's cybersecurity capabilities.<ref name="cogitanda"/>

🌍 '''Geographic footprint.''' Cogitanda historically operated in Germany with documented broker distribution and German-language product materials.<ref name="jimmy"/> Market expansion coverage and capacity commentary indicate an Austria component for at least part of the cyber offering.<ref name="reinsurancenews"/>

{{Section separator}}
== Cyber insurance product and coverage architecture ==

📦 '''Product set.''' Two distinct eras of product positioning are evidenced. The legacy "Cyber Pro+" product, available via an online portal/coverage configurator for broker partners, was described as modular with five coverage groups and extensive sub-components.<ref name="degenia2">{{cite web |title=COGITANDA Broschüre — Versicherung |url=https://degenia.de/wp-content/uploads/2019/06/COGITANDA_Brosch%C3%BCre_2_Versicherung.pdf |publisher=Degenia |date=June 2019}}</ref><ref name="jimmy"/> Following the acquisition, a new "CYBERPROTECTION" product was introduced featuring a digital application workflow and a "CYBERPROTECTION Check" risk assessment component.<ref name="cogitanda"/>

🗂️ '''First-party coverages.''' Legacy materials describe cyber coverage grouped into five Deckungsgruppen (coverage groups): attacks on reputation and identity (mapping to reputational harm and identity restoration), attacks on payment methods and accounts (associated with cybercrime and funds transfer contexts), attacks on hardware/software and data (mapping to data restoration and system repair costs), business interruption, and liability and data protection incidents.<ref name="jimmy"/> An additional "technical insurance" component covering electronics and machinery was positioned as a unique feature with simplified declaration mechanics, where device listing and subsequent reporting of new devices were not required.<ref name="jimmy"/>

⚖️ '''Third-party coverages.''' The stated coverage group "Haftpflicht sowie Datenschutzvorfälle" (liability and data protection incidents) indicates inclusion of liability and privacy/data protection incidents in the configurable product structure.<ref name="jimmy"/>

🚨 '''Breach response and claims services.''' A Cogitanda cyber emergency plan details the incident reporting and post-notice coordination workflow: a 24/7 cyber claims hotline (Germany and international numbers), an incident reporting email, prompt assembly of an expert crisis team with potential on-site support, structured daily technical and management briefings during response, and operational guidance designed to preserve forensic integrity.<ref name="notfallplan">{{cite web |title=COGITANDA Notfall Plan |url=https://s3.eu-central-1.amazonaws.com/cogitanda.official/files/pdf/live/COGITANDA_Notfall_Plan.pdf |publisher=Cogitanda |access-date=9 March 2026}}</ref>

⚠️ '''War exclusion.''' The "Cyber Pro+" product had an explicit war exclusion clause in its AVB (policy conditions), referenced as "AVB COGITANDA Cyber Pro+ Version 1.0 Stand 26.07.2019" in a comparative war-clause study.<ref name="assekurata"/> Ambiguous "war" constructs in cyber insurance can create significant coverage uncertainty and litigation risk, particularly around nation-state attribution disputes — an issue relevant to due diligence even in the absence of specific wording.<ref name="yjolt">{{cite web |title=Wargames: Analyzing the Act of War Exclusion in Insurance Coverage and its Implications for Cybersecurity Policy |url=https://yjolt.org/wargames-analyzing-act-war-exclusion-insurance-coverage-and-its-implications-cybersecurity-policy |publisher=Yale Journal of Law and Technology |access-date=9 March 2026}}</ref>

📐 '''Coverage segmentation.''' Legacy public materials describe servicing small and medium-sized as well as industrial companies, implying a target extending beyond micro-SME packaged business.<ref name="degenia2"/> The post-acquisition CYBERPROTECTION product features tiering (Smart, Advanced, Extended) with quantitative underwriting workflow signals such as simplified risk questioning up to a revenue threshold, along with a stated maximum capacity figure.<ref name="linkedindgc">{{cite web |title=COGITANDA DGC AG Cyberversicherung post |url=https://de.linkedin.com/posts/cogitanda_cogitanda-dgcag-cyberversicherung-activity-7388856248101937152-c5mI |publisher=LinkedIn |access-date=9 March 2026}}</ref>

{{Section separator}}
== Cybersecurity services and technology stack ==

🔐 '''Pre-bind and in-force services.''' Cogitanda's current website references specific cybersecurity capabilities contributed by DGC: external vulnerability detection and monitoring via "cyberscan.io®," penetration tests, security awareness training, and a 24/7 Cyber Defence Operation Center (CDOC).<ref name="cogitanda"/> Legacy brochures also describe a prevention stack including employee training, audits, vulnerability analyses, and monitoring, though without naming specific third-party tooling.<ref name="degenia1">{{cite web |title=COGITANDA Broschüre — Prävention |url=https://degenia.de/wp-content/uploads/2019/06/COGITANDA_Brosch%C3%BCre_1_Pr%C3%A4vention.pdf |publisher=Degenia |date=June 2019}}</ref>

🛠️ '''Post-incident services.''' The emergency plan document provides a concrete depiction of crisis orchestration steps and the data required for coordinated response, including server/client counts, network topology, logs, communications, backups, and law enforcement references.<ref name="notfallplan"/>

{{Section separator}}
== Distribution, capacity, and strategic partnerships ==

🤝 '''Distribution model.''' Cogitanda's legacy model is broker-centric, featuring a partner onboarding flow, a portal-driven process for configuring coverage and generating placements (broker access required), and customer guidance directing insureds to work through their broker.<ref name="degenia2"/> A third-party broker reference confirmed continued access to the quoting platform ("AXON") during the insolvency period, reinforcing that production was executed through a portal workflow.<ref name="hendricks">{{cite web |title=Cogitanda Insolvenz — Fragen und Antworten |url=https://hendricks-makler.de/cogitanda-insolvenz-fragen-und-antworten/ |publisher=Hendricks Makler |access-date=9 March 2026}}</ref>

🏦 '''German risk carriers retained post-acquisition.''' Two incumbent risk carriers continued to support new business and renewals following the acquisition: SV SparkassenVersicherung Gebäudeversicherung AG and Württembergische Versicherung AG.<ref name="notfallplan"/><ref name="reinsurancenews"/><ref name="experten">{{cite web |title=COGITANDA hat neuen Eigentümer — DGC AG übernimmt Cyberversicherer |url=https://www.experten.de/id/4938211/COGITANDA-hat-neuen-Eigentuemer-DGC-AG-uebernimmt-Cyberversicherer/ |publisher=Experten.de |access-date=9 March 2026}}</ref> Board members of these carriers explicitly framed their ongoing support and emphasised the value of integrating prevention, insurance, and claims management.<ref name="experten"/>

🌐 '''International capacity.''' Trade press reports that Cogitanda partnered with Everest Insurance and IQUW to expand its cyber product offering for clients with revenues up to €250 million in Germany and Austria, with a stated policy limit up to €7.5 million for that expanded segment.<ref name="reinsurancenews"/>

{{Section separator}}
== Funding, financial signals, and competitive positioning ==

💼 '''Ownership and insolvency.''' Insolvency was filed in November 2024 and pursued across the group entities, culminating in an asset deal and operational continuation under DGC.<ref name="luther"/> No capital raise disclosures — venture rounds, institutional equity financing amounts, or valuations — were identified in accessible sources.

{| class="wikitable sortable" style="width:100%; font-size:0.85em"
|+ 📊 Cogitanda — key financial indicator, pre-insolvency period
|-
! scope="col" style="text-align:center" | KPI
! scope="col" style="text-align:center; width:7em" | Most recent figure
! scope="col" style="text-align:center" | Source
|-
| Headcount
| style="text-align:right" | ~150 (prelim. insolvency) / ~70 (transfer-secured)
| Brinkmann & Partner statement; Heuking deal note<ref name="brinkmann"/><ref name="heuking"/>
|}

📈 '''Competitive positioning.''' Within the cyber insurtech peer set, Cogitanda most closely aligns to the "European cyber MGA + services" cluster — specialist underwriting design under delegated authority paired with prevention, monitoring, and incident orchestration. Peers in adjacent clusters include US-based integrated cyber platforms such as At-Bay, Coalition, Corvus Insurance, Cowbell, and Resilience, as well as European challengers such as Stoïk and Eye Security.<ref name="luther"/><ref name="linkedin360"/> Additional European or ecosystem peers include Baobab Insurance, BOXX Insurance, Converge Insurance, Elpha Secure, Emergence Insurance, Evolve MGA, Invision Cyber, Measured Analytics and Insurance, Onda, Pera, SafeInside Insurance, Sync Underwriting, and Dattak.<ref name="luther"/>

🏰 '''Competitive moat.''' The integrated prevention-plus-insurance-plus-incident-management model is a central differentiation claim, supported by operational documents and acquisition communications emphasising a combined security and insurance solution.<ref name="notfallplan"/> Distribution lock-in is indicated by broker onboarding and the portal-driven coverage configuration workflow.<ref name="jimmy"/> Capacity access and continuity following insolvency represents a key strategic asset, with two major risk carriers explicitly maintaining support post-acquisition.<ref name="experten"/>

📚 '''Market context.''' Academic and policy sources highlight structural issues directly relevant to a cyber MGA's sustainability, including aggregation and systemic cyber risk, uncertainty around exclusions (especially war attribution), and the need for clearer coverage constructs and risk transfer mechanisms.<ref name="wiley">{{cite web |title=Systemic Cyber Risk |url=https://onlinelibrary.wiley.com/doi/10.1111/risa.13715 |publisher=Risk Analysis (Wiley) |access-date=9 March 2026}}</ref> These themes frame Cogitanda's risk posture given its reliance on external carriers and emphasis on prevention and crisis management as risk-mitigating levers.

{{Section separator}}
== Risks, outlook, and appendices ==

⚡ '''Capacity dependency risk.''' The model is strongly dependent on third-party risk carriers, and post-acquisition continuation explicitly depends on retained and newly arranged carrier support.<ref name="heuking"/>

🌊 '''Systemic cyber aggregation risk.''' Cyber risk is structurally prone to accumulation and systemic events that can affect multiple insureds simultaneously — a core constraint of cyber insurability that directly affects carrier appetite and delegated authority terms.<ref name="wiley"/>

🔥 '''Coverage dispute risk.''' War and state-sponsored cyber attribution remain a stress point for cyber insurance coverage. The broader market dynamic and the presence of war clauses in comparable AVBs represent a continuing due diligence issue for placement, claims handling, and reputational exposure.<ref name="assekurata"/>

🔄 '''Transition and integration risk.''' An asset deal typically requires re-establishing contracts, delegated authority, systems, and controls under new group governance. The integration of security operations with insurer-facing processes suggests execution and compliance risk during the ramp-up phase.<ref name="luther"/>

👤 '''Key-person risk.''' The founder's death is repeatedly cited as a major destabilising factor preceding insolvency, indicating historical dependence on key individuals and associated governance continuity risk.<ref name="luther"/>

🧭 '''Strategy and outlook.''' Cogitanda's post-acquisition strategy centres on a combined "360°" proposition encompassing risk prevention, monitoring, insurance, and crisis management.<ref name="cogitanda"/> Product communications indicate a push toward a more digitised underwriting workflow — including a digital application process and a structured cyber risk check — and a tiered product architecture.<ref name="linkedin360"/>

📅 '''Timeline of key events.'''

* '''2016''' — Cogitanda founded as an early specialised cyber insurance provider in Germany.<ref name="luther"/>
* '''2019 (July)''' — Formal AVB conditions for "Cyber Pro+ Version 1.0" dated 26 July 2019, confirmed by a subsequent comparative market study.<ref name="assekurata"/>
* '''2023''' — Sudden death of founder Jörg Wälder, triggering economic difficulties.<ref name="luther"/>
* '''November 2024''' — Insolvency filing by the group and appointment of a preliminary insolvency administrator; customer coverage continuity asserted.<ref name="brinkmann"/>
* '''March 2025''' — Asset deal sale to DGC group subsidiary; Cogitanda brand retained and operations continuing.<ref name="luther"/>
* '''2025 onward''' — Public positioning emphasises integrated cybersecurity and insurance, and launch of the new "CYBERPROTECTION" product with a digital process and risk check.<ref name="cogitanda"/>

📖 '''Glossary.'''

* '''MGA / MGU / Assekuradeur''' — A delegated authority intermediary that designs, prices, and administers insurance products on behalf of a risk-bearing insurer, often including underwriting and sometimes claims authority. In Germany, "Assekuradeur" is the common term for such structures.<ref name="heuking"/>
* '''Coverholder (Lloyd's)''' — An entity authorised by a Lloyd's managing agent to enter into contracts of insurance on behalf of a Lloyd's syndicate under a binder agreement.<ref name="reinsurancenews"/>
* '''Binder / Delegated authority''' — A contract granting authority to underwrite and bind insurance, typically specifying classes, limits, controls, reporting, and performance terms.<ref name="heuking"/>
* '''GWP (Gross Written Premium)''' — Total premiums written on policies in a period, before reinsurance and cancellation adjustments.
* '''Loss ratio''' — Claims incurred divided by premium earned (or written), measuring underwriting performance.
* '''Quota share / Excess of loss reinsurance''' — Quota share: the reinsurer takes a fixed percentage of premiums and losses. Excess of loss: the reinsurer covers losses above a retention up to a limit.
* '''Systemic cyber risk''' — Cyber risk characterised by cascades, common-cause failures, or correlated events leading to simultaneous losses across many insureds.<ref name="wiley"/>
* '''War exclusion / Nation-state attribution issues''' — Policy exclusions that may bar coverage for warlike acts or state-sponsored events; attribution uncertainty can drive disputes.<ref name="yjolt"/>

{{Section separator}}
== References ==
{{reflist}}

Cogitanda - Revision history

Wikilah admin at 06:12, 9 March 2026