Cyber insurance due diligence process and metrics questions

Out of curiosity, does anyone have ideas about the metrics and KPI cyber insurance providers request when performing due diligence and policy creation?

I realize this would vary per industry and business so I’m curious to see how these insurance companies try to justify the cost.

business companies cost curiosity cyber cyber insurance cybersecurity due diligence ideas industry insurance kpi metrics performing policy process questions request