CrowdStrike announced an expansion of Project QuiltWorks that brings major cyber insurers into the framework, according to a Business Wire release published May 28, 2026. The announcement names Coalition, Liberty Mutual Insurance, Lockton, Resilience, and Marsh as partners that will contribute actuarial and underwriting expertise, per Reinsurance News and Business Wire. CrowdStrike and partner materials describe QuiltWorks as an integrated model that links AI-driven vulnerability discovery and prioritization with remediation services and financial mitigation; Business Wire states the program uses frontier models from OpenAI and Anthropic. Cognizant is listed by the company as a systems-integrator partner supporting assessment and remediation at scale. Daniel Bernard, CrowdStrike chief business officer, is quoted on the framework in the company release.
What happened
CrowdStrike announced an expansion of Project QuiltWorks in a Business Wire release dated May 28, 2026, extending the framework from frontier AI security risk management to include financial mitigation, per Business Wire. The announcement names Coalition, Liberty Mutual Insurance, Lockton, Resilience, and Marsh as cyber insurance and brokerage partners, according to Business Wire and Reinsurance News. The company release and industry coverage state that these partners will bring actuarial intelligence, underwriting capability, and financial protection into the QuiltWorks model.
Technical details
Per the company announcement on Business Wire, Project QuiltWorks combines CrowdStrike's AI-driven discovery and adversary-informed prioritization with remediation services from systems integrators and now adds insurer-led financial modeling and underwriting intelligence. The Business Wire text explicitly notes QuiltWorks is powered in part by frontier models from OpenAI and Anthropic and that the framework spans discovery, prioritization, remediation, and financial mitigation. Cognizant's partner page also lists the company as part of the expanded QuiltWorks coalition, describing joint delivery of Falcon-based detection and remediation capabilities at scale.
Editorial analysis: technical context
Industry-pattern observations: Integrating insurer actuarial inputs with technical detection pipelines creates a feedback loop where quantified financial exposure can be mapped back to technical controls. Companies in the cyber-insurance market increasingly demand measurable control outcomes before offering coverage, and combining underwriting signals with automated prioritization is a common emerging approach across the sector.
Context and significance
Editorial analysis: This expansion addresses a practical gap between rapid vulnerability discovery driven by frontier AI techniques and the financial consequences organisations face when exploitation timelines compress. Reporting frames QuiltWorks as an attempt to create an end-to-end offering that links technical findings to board-level financial exposure and insurance placement. For security teams and risk managers, the move reflects a broader market trend: insurers and brokers are seeking tighter integration with detection and remediation workflows to underwrite novel risks created by advanced AI capabilities.
What to watch
Industry observers will monitor whether insurer involvement yields standardized metrics that insurers accept for underwriting frontier AI risk, and whether those metrics are machine-readable and automatable. Reporting does not provide market adoption figures or pricing detail; Business Wire and partner pages do not disclose contract terms, claims-capacity changes, or new coverage language tied specifically to QuiltWorks. Observers should also track which remediation providers and systems integrators are delivering the operational playbooks referenced in the announcement, and whether insurers begin to reference QuiltWorks-derived metrics in underwriting guidelines.
Quoted material
The Business Wire release includes a direct quote from Daniel Bernard, CrowdStrike chief business officer: "Frontier AI risk doesn't stop at technology, it lands on the balance sheet. Project QuiltWorks is the only framework that delivers the technology to identify and prioritize, the services to remediate, and the financial protection to secure against it. That's how CrowdStrike defines the standard." The announcement also characterizes QuiltWorks as "the industry's first model" that spans technical discovery, expert remediation, and financial mitigation; that phrasing is from the company release.
Limitations of reporting
What happened reporting does not include insurer-level statements of coverage changes, actuarial models, or quantified risk-transfer terms. Reinsurance News and Business Wire summarize the partnerships and capabilities but do not publish sample contractual terms or underwriting thresholds tied to QuiltWorks metrics.
Implications for practitioners
For practitioners: Organisations evaluating frontier AI-driven vulnerability programs should treat insurer-integrated frameworks as a potential route to align security telemetry with risk transfer. Industry-pattern observations suggest adoption will depend on clarity of metrics, repeatable remediation outcomes, and insurer willingness to codify those outcomes into underwriting language.
Scoring Rationale #
Notable industry development: adding major insurers to a technical remediation framework matters for security teams and risk managers, but it is not a frontier-model release or regulatory shift. The story is actionable for practitioners who interface with underwriting and incident response.
Practice with real Health & Insurance data
90 SQL & Python problems · 15 industry datasets
250 free problems · No credit card
See all Health & Insurance problems