For Cyber Insurance

Give your cyber insurer the behavioral evidence they're asking for.

Connect your Microsoft 365 and document real employee security behaviors — in 15 minutes.

No credit card. No sales call. Just your data.

Praxis Navigator Trust view showing security posture, behavioral risk indicators, and compliance-ready evidence for cyber insurance

Insurers are asking harder questions. "We did training" isn't enough anymore.

Cyber insurance renewals have changed. Insurers no longer accept attestations at face value — they want evidence of demonstrated security behavior. And the gap between what you can attest to and what you can actually prove is getting expensive.

Here's what that looks like at renewal time:

Your questionnaire asks about security behaviors.

You're answering with activity logs and completion rates.

You attest to having controls in place.

You can't prove your employees are actually using them.

You've run awareness training.

But you have no baseline to show it changed anything.

Your premium is tied to demonstrated risk reduction.

And you have nothing to demonstrate it against.

Built on 20 years of security culture research.

We know what it means to be asked to prove something you've never had the tools to measure.

Kai Roer created the Security Culture Framework over a decade ago. It was adopted by ENISA for EU-wide cybersecurity guidelines. He wrote the books that security professionals use as their playbook — Build a Security Culture and The Security Culture Playbook (Wiley, 2022).

And through all of that work, one gap never closed: the gap between what organizations say their employees do and what they actually do.

Praxis Navigator exists to close that gap — and give you the behavioral evidence your insurer is asking for.

From attestations to behavioral evidence.

Praxis Navigator connects to your Microsoft 365 environment and monitors real employee security behaviors — continuously, passively, and without disrupting anyone's workday.

You get what no training platform or compliance tool can give you:

Continuous behavioral baselines from day one. Built from actual employee behavior patterns across Exchange Online, SharePoint, OneDrive, Teams, and Entra ID.
Before-and-after proof that your security program works. Tag a training rollout, a policy change, or a new control — and see the measurable behavioral impact automatically.
Always-current data ready for renewal. No scramble to gather evidence at renewal time. Your behavioral record is building continuously.
20+ risk indicators in one view. Email discipline, cloud sharing behavior, attachment risk, MFA adoption, external collaboration — consolidated and exportable.

Three Steps to Insurable Behavioral Evidence

Connect

Connect your Microsoft 365 in 15 minutes. Self-service setup through Microsoft Marketplace. No agents, no IT projects, no disruption to employees.

Praxis Navigator Bridge overview showing the command center for human security risk across your organization

Praxis Navigator risk-bearing employee detail showing behavioral risk indicators, trend data, and risk patterns across the organization

Assess

See behavioral risk across your organization immediately — including months of historic trends from Microsoft 365 retention data. Your risk baseline starts building from day one.

Document

Generate behavioral evidence reports showing risk posture, trend data, and the impact of your security interventions. Go into renewal conversations with proof — not just attestations.

Praxis Navigator Impact Proof module showing baselines, interventions tracked, and total behavioral events over time

The behavioral data you're not capturing right now.

Microsoft retains behavioral data for 90 to 160 days. After that, it's gone — permanently.

Every week you wait is a week of behavioral history that disappears. Baselines you could have built. Trend data you could have shown your insurer. Evidence of risk reduction you could have used at renewal.

Praxis captures and preserves this data from the moment you connect. The sooner you start, the more history you keep.

What changes when you walk into renewal with behavioral evidence.

You walk into renewal as the organization that can prove its security program is working — with continuous behavioral data, not self-reported attestations.

Praxis Navigator Impact Proof showing before and after behavioral comparison with measurable risk reduction evidence

Before Praxis	With Praxis
Attestations on questionnaires	Behavioral evidence from 20+ risk indicators
"We have security awareness training"	"Training reduced email attachment risk by 34%"
No baseline to prove improvement against	Rolling behavioral baselines from day one
Manual evidence gathering at renewal	Always-current behavioral data, ready to export
Hoping for favorable premium treatment	Documenting measurable risk reduction

Trusted by Security Professionals

Security Culture Framework

Adopted by ENISA

The Security Culture Playbook

Published by Wiley

20+ Years Research

Security culture expertise

Microsoft Graph API

EU data residency available

Dedicated Azure Resource Groups

Your data, never shared

Trust Center ↗

Security & privacy documentation

See Your Behavioral Risk Data — Free for 30 Days

Connect your Microsoft 365 and start building your behavioral evidence record today. Full access to all Praxis Navigator Core features.

No credit card. No sales call. Just your data.

Full Core feature access for 30 days
No credit card or payment required
Deploy in 15 minutes through Microsoft Marketplace
Historic behavioral data from day one
Cancel anytime

Start Free Trial

No credit card required. No commitment. See results in 15 minutes, or don't continue.

Frequently Asked Questions

What kind of evidence does Praxis Navigator provide for cyber insurance purposes?

Praxis Navigator provides continuous behavioral data from your Microsoft 365 environment — not attestations or self-reported controls. It monitors 20+ real employee security behaviors across Exchange Online, SharePoint, OneDrive, Teams, and Entra ID: how employees handle email attachments, share files, use MFA, manage external collaboration, and more. This gives you a documented behavioral record showing your organization's actual security posture over time — the kind of evidence insurers increasingly require at renewal.

How does this help with cyber insurance questionnaires?

Cyber insurance questionnaires increasingly ask about security behaviors, not just the existence of controls. Praxis Navigator gives you data to answer those questions with evidence rather than attestation. Instead of "yes, we have security awareness training," you can show behavioral trend data demonstrating that your training actually changed how employees handle email, files, and credentials in their daily work.

Can Praxis Navigator help reduce our cyber insurance premium?

Praxis Navigator does not negotiate directly with insurers. What it does is give you the behavioral evidence that supports a stronger risk story at renewal — documented risk baselines, measurable improvement over time, and before-and-after proof that your security interventions are working. How your insurer weights that evidence is between you and them, but walking into renewal with documented behavioral improvement is a stronger position than self-reported attestations.

How quickly will I see data after connecting?

Within 15 minutes of connecting your Microsoft 365 tenant, you'll see your first behavioral data. Because Microsoft retains historic activity data for 90–160 days, you get a behavioral baseline from day one — months of behavioral history you didn't know existed.

What behavioral data is Microsoft retaining that I am not capturing?

Microsoft retains behavioral data — email handling patterns, file sharing events, authentication logs, collaboration activity — for 90 to 160 days depending on your subscription and data type. After that retention window, it is deleted permanently. Every week you wait to connect Praxis Navigator is a week of behavioral history that disappears: baselines you could have built, risk trends you could have tracked, evidence you could have shown your insurer at renewal.

Does Praxis Navigator replace our existing security tools?

No. Praxis Navigator sits alongside your existing security stack — your SAT platform, SIEM, EDR, and compliance tools. It adds the behavioral measurement layer that none of those tools provide: continuous visibility into what employees actually do in their normal workday, not what security events they trigger. It is the evidence layer your existing stack is missing.

What is the Security Culture Framework and why does it matter?

The Security Culture Framework is a structured model for measuring and improving organizational security culture. It was created by Kai Roer and adopted by ENISA for EU-wide cybersecurity guidelines. The SCF is built around four steps: Metrics, Organization, Topics, and Planner. The Metrics step requires behavioral baselines — a before-state to measure progress against. That is exactly what Praxis Navigator provides: continuous, real-world behavioral data from Microsoft 365 that gives you the baseline evidence insurers need to see genuine risk reduction over time.

Is our employee data safe and GDPR-compliant?

Yes. Praxis Navigator follows security and privacy best practices throughout. Each customer's data runs in a dedicated, customer-only resource group inside Azure — your data is never shared with or accessible by other customers. EU data residency is available, and all monitoring is conducted on behavioral patterns in accordance with applicable privacy regulations. Full security and compliance documentation is available in our Trust Center.