BUILDERS How Baobab uses attack surface reconnaissance to underwrite cyber risk more accurately than incumbents | Vincenz Klemm
Cyber insurance was bleeding money across Europe — and the industry knew it. Loss ratios were unsustainable because carriers were pricing risk they didn't actually understand. Vincenz Klemm, CEO and Co-Founder of Baobab, saw that as a systems problem, not a market problem. His solution: build an insurer that maps a company's external attack surface before underwriting, retrieves leaked credentials from the dark web at scale, and uses AI to model the most probable breach vectors — then hands all of that intelligence directly to the customer. The result is an incentive structure where Baobab only wins if its customers don't get hacked. In this episode of Unicorn Builders, Vincenz walks through how that model was built, how Baobab is moving upmarket to €1B+ revenue companies, and what it actually takes to bridge two cultures — conservative insurance and fast-moving cybersecurity — that almost never successfully mix.
Topics Discussed:
The three structural failures in European cyber insurance that created the opening for Baobab
Why Baobab bets on the broker channel rather than disrupting it — and how they technically enable brokers to close deals they'd otherwise walk away from
How attack surface reconnaissance and dark web credential retrieval work as both a risk model input and a customer retention tool
The operational and product changes required to move from €100M to €1B revenue customers
Why building a team that spans insurance and cybersecurity is a moat even Allianz can't replicate
"Obligation to dissent" as a hiring filter, not just a culture value
Pan-European expansion and what's coming in the cybersecurity product suite
GTM Lessons For B2B Founders:
The most durable GTM wedge is a perfectly aligned incentive model. Baobab provides something that looks like free security consulting — proactively flagging open databases, exposed APIs, leaked credentials, accessible security cameras. They do it because every prevented breach is a claim they don't pay.
Broken unit economics in an incumbent market are often a data problem in disguise. Cyber insurance wasn't unprofitable because the risk was uninsurable — it was unprofitable because carriers were pricing it blind. Baobab's answer was to build proprietary data infrastructure: external attack surface mapping, AI-correlated breach vectors, dark web monitoring.
Enabling a channel is often more defensible than disrupting it. Baobab competes in a market where the average insurance broker is 55, has deep customer relationships, but lacks the technical literacy to confidently sell cyber products.
Moving upmarket requires disaggregating what actually changes. Baobab's move from €100M to €1B revenue customers wasn't a simple price increase. Enterprise buyers at that scale often have in-house professional insurance buyers — former brokerage professionals who negotiate individual policy clauses, deductible structures, and coverage limits.
Cultural bridging between two opposite talent pools is an underrated moat. Baobab's team requires people from cybersecurity — fast-moving, technically deep, where the threat landscape looks completely different every three years — and from insurance — conservative, legally oriented, built on decade-long customer relationships.
// Sponsors: Front Lines — We help B2B tech companies launch, manage, and grow podcasts that drive demand, awareness, and thought leadership. www.FrontLines.io
The Global Talent Co. — We help tech startups find, vet, hire, pay, and retain amazing marketing talent that costs 50-70% less than the US & Europe. www.GlobalTalent.co
//
Don't Miss: New Podcast Series — How I Hire Senior GTM leaders share the tactical hiring frameworks they use to build winning revenue teams. Hosted by Andy Mowat, who scaled 4 unicorns from $10M to $100M+ ARR and launched Whispered to help executives find their next role. Subscribe here: https://open.spotify.com/show/53yCHlPfLSMFimtv0riPyM