Why Aon Raised Data Centre Life Cycle Insurance to US$3.5bn

As cyber threats targeting critical digital infrastructure intensify, Aon has expanded its Data Centre Lifecycle Insurance Program (DCLP) to US$3.5bn, with enhanced protection against ransomware, security breaches and operational disruption.

The additional US$1bn in capacity brings broader coverage for facilities that have become prime targets for cyber criminals and state-sponsored actors.

The programme now includes existing data centres after their first year of operations, reflecting how facilities evolve from build projects into continuous, mission-critical environments.

Data centres underpin cloud platforms, enterprise networks and increasingly AI workloads, making them attractive targets for ransomware operators and advanced persistent threats.

As facilities grow in scale and complexity, operators must navigate an expanding attack surface that includes both digital vulnerabilities and physical security risks.

Addressing cyber exposure across operational phases

The DCLP was launched in June 2025 as a multi-line solution covering risks from development through to operation.

The latest update ensures that cyber and technology coverage does not lapse once a facility goes live, when exposure to digital threats intensifies.

As data centres become operational, they face direct and indirect impacts from cyber incidents.

Ransomware attacks could trigger business interruption, while technology errors and system failures could cascade across interconnected infrastructure.

The programme includes cyber and technology errors and omissions (E&O) coverage of up to US$400m, addressing both immediate financial losses and broader operational impacts.

Joe Peiser, CEO of Risk Capital at Aon, connects the expansion to the critical role data centres play in digital resilience.

"Data centres have become foundational to innovation, connectivity and economic growth," he says. 

"As these assets grow in size, complexity and importance, resilience must be built from the start.

"By expanding our Data Center Lifecycle Insurance Program and extending coverage to operating data centres, Aon is helping clients anticipate risk, protect critical assets and invest in digital infrastructure with greater confidence."

By combining cyber coverage with protection against physical damage, equipment failure and business interruption, the programme provides a coordinated response to scenarios where digital and physical risks intersect.

As hyperscale facilities support cloud services and AI processing, they become targets for sophisticated threat actors seeking to disrupt services or exfiltrate data.

Protecting high-value digital assets

The expanded programme reflects the increasing value and vulnerability of data centre infrastructure.

Facilities are becoming more complex and expensive to operate, particularly as high-density computing requirements create new security challenges.

To support this, DCLP offers up to US$3.5bn in coverage across construction and operational risks. 

Third-party liability coverage reaches US$200m globally, addressing potential exposures from data breaches or service disruptions affecting clients.

Additional elements include project cargo and transport insurance of up to US$500m, protecting equipment during delivery when supply chain vulnerabilities could introduce security risks or enable tampering.

Integrated risk management approach

Aon provides cyber impact modelling and risk engineering through its Global Risk Consulting team.

These services use data analysis to assess potential attack scenarios, quantify financial impacts and identify vulnerabilities across operational technology and IT systems.

This programme is backed by a global panel of insurers rated A or higher, including participants from Lloyds and company markets.

This structure enables Aon to aggregate capacity from multiple providers, offering coverage suited to hyperscale projects where cyber exposure scales with operational complexity.

Its integrated Risk Capital model, allows Aon to combine insurance capacity with analytics and advisory services.

This approach supports operators managing cyber risk across the entire lifecycle of a data centre, from securing construction sites against physical intrusion to defending operational facilities against ransomware and advanced persistent threats.