The Signal in the Noise: A User’s Guide to Selecting Physical Risk Assessment Vendors

Financial institutions are under increasing pressure from regulators and stakeholders to provide detailed, asset-level physical climate risk assessments. The vendor landscape is complex, with “black box” models often producing conflicting results for identical properties. Even when vendors assess the same assets and scenarios, outputs can vary significantly in hazard estimates and damage ratios.

This variation does not mean one model is “right” and another is “wrong.” Asset-level physical risk modelling is inherently complex and uncertain, with vendors making different methodological and design choices. The key question for decision-makers is suitability: which approach best enables you and your teams to confidently stand behind every number, knowing you can explain and defend your choices to your board, regulators, or stakeholders. Success means having the clarity and confidence that your assessments are transparent, defensible, and directly aligned with your portfolio, decision needs, data quality, and governance requirements.

This article provides a user guide to help you navigate estimate dispersion, ask informed vendor questions, and select a vendor that is fit for purpose and decision-useful. We’ll walk you through the main drivers of dispersion, provide a due-diligence checklist of vendor questions, and outline six post-selection steps to effectively integrate results into your workflows. This roadmap will help anchor expectations and guide you through the full vendor selection process.

What vendor benchmarking tells us in 2026, in plain terms

Based on our experience reviewing physical risk assessment vendors with clients, two consistent patterns emerge:

1 - Dispersion is real, and it shows up in hazard and damage

Vendors often show significant variation in hazard estimates and damage ratios. For the same location, one vendor may indicate high exposure while another reports limited or no exposure. This dispersion occurs across perils such as river and coastal flooding, cyclone wind, windstorm, and heat.

2 - Drivers of dispersion are methodological, not cosmetic

These differences typically result from a combination of factors:

1. Downscaling choices: how global climate model outputs are translated into regional or local views relevant to a specific asset location.

2. How location and footprint are determined: whether the vendor’s tool relies on postal address, latitude and longitude, perimeter, or facility naming conventions.

3. Metric definitions: which hazard metrics are reported, and exactly how they are defined and measured.

Talking about metrics, flood vs wind is the simplest way to see the problem

Hazard metrics are a common source of miscomparison across vendors and perils.

• Flooding is often reported in relatively comparable terms, such as flood depth in metres.

• Wind and cyclones are where comparability can break down quickly. Wind speed may be reported in different units and, more importantly, can refer to different definitions (for example, sustained 1-minute vs 10-minute winds, or gusts). Some vendors also use probability-based measures aligned with cyclone category scales, such as the Saffir-Simpson scale.

The key takeaway is that there is no universally “correct” metric for all use cases. If stakeholders assume metrics are directly comparable when they are not, this can lead to false confidence, poor prioritization, and reduced business value from the assessment.

The “garbage in” problem: asset location data quality can change results materially

If you can take only one technical point into vendor selection, take this: how the vendor’s approach ingests and resolves asset-location inputs can materially change outcomes, particularly for location-sensitive hazards like flooding. In practice, when asset information is incomplete or ambiguous, different geocoding approaches can place the “same” asset at meaningfully different coordinates. We have seen dispersion large enough to require logarithmic scales, including rare outliers above 1,000 km from a central estimate.

For model users, the same “asset” can be mapped to different locations, which may alter hazard intensity, return periods, and estimated damages. If you do not understand how a vendor handles ambiguous inputs, you are not selecting a tool; you are accepting a hidden assumption.

Questions to ask before you commit

The complexity, uncertainty, and diversity of asset-level physical risk assessment means there is no single “best” vendor. Suitability depends on intended use, data quality, and how outputs will be applied inside your governance and risk framework.

Experienced professionals will recognize that selecting a vendor involves choosing a modelling approach, an interpretation layer, and a data workflow, not just a score.

To select a suitable physical risk assessment vendor, use the following questions as a structured due diligence checklist. These are designed to assess relevance, explainability, and decision usefulness, which are critical for risk, credit, and board committee discussions.

A. Use case and decision integration

• What is the intended use case: site-level decisions, portfolio screening, adaptation planning, underwriting, credit, or disclosure reporting?

• Which decisions will the outputs directly inform, and what decision thresholds do you recommend?

B. Coverage and modelling scope

• Which geographies and perils are covered, and where are known limitations?

• Do you model direct hazard impacts only, or also indirect and systemic effects such as supply chain disruption? If not, how should we treat that gap?

C. Asset data requirements

• What minimum asset location inputs do you require for reliable geocoding: address, parcel, coordinates, perimeter?

• How do you resolve locations when inputs are incomplete or ambiguous, and what QC flags do you provide?

• Which asset attributes materially affect vulnerability (construction type, age, elevation, floor area), and how do you handle missing fields?

D. Scenarios, horizons, and update cadence

• Which scenarios and time horizons are available, and how frequently are models updated?

• How do you align scenario choices to regulatory expectations and internal model risk management?

E. Metrics and comparability

• For each peril, what exactly is the hazard metric, its unit, and its definition (for example gust vs sustained wind)?

• How should we compare outputs across tools if hazard metrics differ?

F. Damage, vulnerability, and damage ratios

• How are damages estimated from hazards, and what does your “damage ratio” represent?

• Do you separate structure, contents, and business interruption, and for which asset types?

G. Validation and uncertainty

• How do you validate the model, and what independent checks exist?

• What measures of uncertainty do you provide, and how should decision-makers use them?

Once you have clear answers, you establish a disciplined basis for vendor selection and internal review. This is where sustainability risk management, compliance confidence, and business value begin to align.

At Futureproof Solutions, we recommend six additional steps to translate vendor outputs into actionable decisions:

1. Create a model intake standard across vendors: scenario, horizon, hazard metric definitions, geocoding approach, and damage ratio logic.

2. Set location data quality gates (minimum fields, acceptable uncertainty, required QC flags) before results enter risk systems.

3. Define comparability rules across perils and vendors to avoid blending incompatible metrics in decision-making.

4. Add a validation layer, including independent checks on a subset of assets and escalation triggers when dispersion exceeds internal tolerances.

5. Tie outputs to action pathways: adaptation planning, insurance strategy, capex prioritisation, supplier engagement, or site resilience measures, so impact and value are realised.

6. Train all relevant teams, not just analysts. Governance, finance, and asset teams should understand the meaning and limitations of hazard metrics and damage ratios to reduce misinterpretation risk.

How Futureproof Solutions helps

At Futureproof Solutions, we help financial institutions and corporates select and use physical climate risk tools that are suitable, auditable, and decision-useful. We work with clients to challenge vendor methodologies, translate hazard metrics and damage ratios into governance language, and refine asset location workflows to ensure outputs are reliable for business decisions.

We also partner with Climatig to provide end-to-end support, including tool configuration, data readiness, team onboarding, interpretation, reporting, capacity building, and integration into risk and compliance processes. This ensures results can be used confidently in committees and investment decisions.

Please contact us to discuss how we can support your needs.