Buyer fit
Good fit when
- ✓European SMEs wanting cyber insurance and MDR in one broker-sold bundle
- ✓Companies in France, Germany, Spain, Belgium, Austria or Luxembourg
- ✓Organizations needing affordable endpoint monitoring without complex procurement
Watch out when
- ×Organizations needing active remediation or autonomous containment
- ×Companies requiring cloud, SaaS or identity threat detection
- ×Enterprises wanting published detection metrics and proactive threat hunting
Coverage
1 of 6 attack surfaces in the base price — the rest are separately priced.
EDR
Additional capabilities
Incident response
Pricing
What costs extra
- –Higher insurance coverage tiers above base policy
- –Stoik Protect platform features (included only for policyholders)
Cost caveats
- –Requires CrowdStrike Falcon EDR deployment. Cannot use a competing endpoint agent.
- –MDR is only available bundled with a Stoik insurance policy. No standalone MDR purchase option.
- –Sold through broker partners only. No direct purchase from Stoik.
- –Revenue cap: companies up to 1B EUR turnover (expanded from 750M EUR after CyberContract acquisition in September 2025).
Verify pricing directly with the provider.
Team and access
Reputation
Almost no English-language reviews. 10,000+ insured companies and 200%+ YoY growth show market traction in continental Europe. Backed by a16z, Munich Re Ventures and Alven (~$78M raised through Series C in Jan 2026). Practitioner sentiment on MDR quality is impossible to gauge from public sources.
What customers praise
- ✓Bundled insurance and MDR removes buying friction for SMEs
- ✓CrowdStrike Falcon EDR as detection foundation
- ✓Low entry price relative to standalone MDR providers
Common complaints
- ×No published detection metrics or third-party validation
- ×Endpoint-only, no cloud, SaaS or identity detection
- ×Sold only through brokers, limiting direct buyer control
No Reddit discussion found. Almost no English-language community presence. Coverage is in French media and insurance industry press.
Questions to ask
- 1.
Can we buy MDR without insurance, or insurance without MDR? What happens to one if we cancel the other?
- 2.
What does 'automatically neutralizes' mean in practice? Which response actions happen without our approval?
- 3.
How many analysts staff CERT-Stoik, and how does the team scale with 10,000+ insured companies and 600 new ones monthly?
- 4.
What happens to our insurance premiums after we file a claim? Does coverage decrease on renewal?
- 5.
How does this differ from running CrowdStrike Falcon Complete directly? What does CERT-Stoik add beyond Falcon's own detections?
- 6.
What data can we export if we leave? Is there a documented transition process?
- 7.
Who are the underwriters backing our specific policy, and what is their claims history for cyber?
Evidence
Sources reviewed
Public-data caveats
- –No public contractual response-time SLA is recorded for this profile.
- –No public fixed price is recorded; compare only after a scoped quote.
- –No public breach warranty is recorded.
- –Response authority may depend on pre-approval and contract scope.
- –MDR analyst headcount or analyst-to-customer ratio is not public.
Also consider
Independent research. Verify details directly with the provider before making decisions.
