In recent years, as a result of increased internet dependence, individuals and organizations are exposed to much more cyber attacks. A provision of internet security has become important for individuals, organizations, and even states. Transfer of risk which is one of the approaches to the risk removal phase based on a licensed insurance company takes risks under the scope of cyber risk insurance for a certain fee. Through cyber risk insurance, risk evaluation and management processes can be performed with predictable and regular payments instead of financial losses and uncertain cyber threats. In this study, it will be focused on why the cyber risk insurance should be done and its importance. For insurance companies, the calculation of the cyber risk score of organization or individual is very important for determining the criteria and value of the policy to be signed. The insurance company, who will calculate the risk score, makes an accurate calculation by using the open source intelligence method and vulnerability analysis. The cyber risk score should be checked by repeating these processes at regular intervals after the signing of the policy by calculating the cyber risk score and corrective measures should be taken if necessary. As an example, the contents of individual cyber risk insurance policies of three international insurance companies have been presented and the differences among these companies have been evaluated. As a result, we consider that this study will be a guide for future academic studies on cyber risk insurance and score.
