casemark/managing-insurance-fraud-detection
skills/finance/managing-insurance-fraud-detection/SKILL.md
Structures insurance fraud detection with red flag identification, investigation protocols, and SIU referral documentation. Use when detecting insurance fraud, investigating suspicious claims, or documenting fraud indicators.
$ install --global
skillsauthnpx skillsauth add casemark/skills managing-insurance-fraud-detectionInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: May 24, 2026, 3:28 AM159.9s1 file scanned
SKILL.md
- name:
- managing-insurance-fraud-detection
- language:
- en
- description:
- Structures insurance fraud detection with red flag identification, investigation protocols, and SIU referral documentation. Use when detecting insurance fraud, investigating suspicious claims, or documenting fraud indicators.
- author:
- casemark
Managing Insurance Fraud Detection
Structures insurance fraud detection programs covering red flag identification, investigation protocols, SIU referral documentation, and cross-functional coordination across claims, underwriting, and compliance teams.
When To Use
- Standing up or auditing a fraud detection program for a carrier or MGA
- Triaging suspicious claims against known fraud indicator patterns
- Building or refining SIU referral criteria and escalation workflows
- Documenting fraud investigation findings for regulatory reporting or litigation support
- Evaluating analytics/model outputs that flag anomalous claim or policy activity
- Coordinating between claims adjusters, SIU investigators, legal counsel, and law enforcement
Inputs To Gather
- Line of business: Auto, property, health/medical, workers' comp, life, disability, or commercial liability
- Claim file or policy data: Claim number, policy details, loss description, claimant/insured information, payment history
- Red flag triggers: What prompted suspicion (adjuster referral, analytics alert, tip, pattern match)
- Prior investigation history: Past SIU referrals, prior claims by same claimant/provider, related party flags
- Jurisdictional context: State fraud reporting statutes, mandatory referral thresholds, immunity protections [VERIFY]
- Internal thresholds: Company-specific scoring models, referral criteria, authority limits for SIU action
- Regulatory obligations: State fraud bureau reporting deadlines, NICB membership requirements, federal program fraud considerations (e.g., crop insurance, flood insurance) [VERIFY]
Workflow
-
Classify the fraud type
- Distinguish hard fraud (staged accidents, arson, fabricated claims) from soft fraud (inflated damages, misrepresented facts, premium evasion)
- Identify the scheme pattern: provider fraud, policyholder fraud, agent/broker fraud, organized ring activity
- Map to the relevant line of business — red flags differ materially between auto PIP fraud, property water-loss fraud, and workers' comp malingering
-
Catalog red flags
- Document each indicator with specificity: financial pressure signals, timeline inconsistencies, claimant behavior anomalies, medical treatment patterns, policy inception-to-loss timing
- Cross-reference against established indicator libraries (NICB, ISO ClaimSearch, Coalition Against Insurance Fraud resources)
- Score or weight indicators — a single flag rarely warrants SIU referral; accumulation of 3+ correlated indicators typically triggers escalation
-
Assess investigation viability
- Determine whether the claim reserve and potential recovery justify investigation costs
- Identify available evidence sources: surveillance feasibility, social media intelligence, EUO/statement under oath opportunities, medical record audits, financial record subpoenas
- Evaluate statute of limitations and reporting deadlines for the jurisdiction [VERIFY]
-
Structure the SIU referral package
- Prepare a referral memo with: claim synopsis, enumerated red flags with supporting evidence, recommended investigation actions, preliminary fraud type classification
- Attach supporting documentation: indexed claim file excerpts, analytics output, prior claim history, public records search results
- Assign priority tier (routine, elevated, urgent/ring activity) based on dollar exposure and scheme complexity
-
Define investigation protocol
- Outline specific investigative steps: recorded statements, surveillance windows, scene inspections, canvass interviews, financial analysis, expert retention
- Set milestone checkpoints (30/60/90-day reviews) with go/no-go decision criteria
- Establish chain-of-custody procedures for physical and digital evidence
- Coordinate with claims on reservation of rights letters and EUO scheduling
-
Manage regulatory and law enforcement coordination
- Prepare state fraud bureau referral forms per jurisdictional requirements [VERIFY]
- Determine whether to file a Suspicious Activity Report (SAR) if federally regulated program is involved [VERIFY]
- Coordinate with NICB for organized fraud or multi-carrier schemes
- Document all law enforcement contacts and information-sharing with appropriate privilege protections
-
Produce the management report
- Summarize open investigations by status, priority, and estimated exposure
- Track key metrics: referral-to-resolution time, denial/recovery rates, investigation ROI
- Highlight emerging scheme trends and recommend adjustments to detection models or adjuster training
- Flag cases approaching regulatory reporting deadlines or litigation hold triggers
Output
The deliverable is a Fraud Detection Management Report containing:
- Executive summary: Total referrals, open investigations, recoveries, and denial savings for the reporting period
- Red flag analysis: Cataloged indicators by scheme type with frequency and correlation data
- Active investigation tracker: Case-by-case status with priority tier, assigned investigator, next action, and target dates
- SIU referral packages: Completed referral memos with supporting documentation indices
- Regulatory compliance log: Filed reports, upcoming deadlines, and outstanding obligations by jurisdiction
- Trend analysis and recommendations: Emerging patterns, model tuning suggestions, training needs, and resource allocation proposals
Quality Checks
- Every red flag cited is tied to a specific, documented data point — no conclusory assertions without evidentiary support
- Fraud type classification aligns with NICB/ISO standard taxonomy
- SIU referral memos distinguish between confirmed facts, adjuster observations, and analytical inferences
- Jurisdictional reporting requirements are verified against current statutes — mark with [VERIFY] if not independently confirmed
- Investigation protocols include chain-of-custody requirements and privilege preservation steps
- Management metrics use consistent definitions (e.g., "recovery" includes subrogation, denial savings, and restitution separately)
- No accusatory language in documentation — use "indicators consistent with" rather than "fraud" until adjudicated
- All timelines account for applicable statutes of limitation and regulatory filing windows [VERIFY]
Related Skills
casemark/skills/legal/automated-contract-summary
development
VerifiedTrustedCommunity
name: automated-contract-summary language: en description: Generates structured executive summaries of contracts using ML — captures key terms, party obligations, risk allocations, and compliance requirements in a standardized format. Optimized for high-volume review where speed and consistency matter. tags: - summarization - agreement - corporate --- # Automated Contract Summarization Produces standardized executive summaries of contracts using machine learning, capturing essential term
21SKILL.mdUpdated May 26, 2026
casemark/obligation-mapping
tools
VerifiedTrustedCommunity
Extracts regulatory obligations from dense regulations across jurisdictions. Breaks down multi-level regulations into clear article-level obligations, classifies applicability to a business, and prioritizes by risk level. Use when translating regulations into actionable compliance requirements.
21SKILL.mdUpdated May 25, 2026
casemark/horizon-scanning
development
VerifiedTrustedCommunity
Continuously monitors regulatory landscapes for changes relevant to a specific business. Ingests global regulatory updates, filters by relevance, summarizes impact, and produces an actionable change advisory. Use when tracking regulatory developments affecting a particular product or market.
21SKILL.mdUpdated May 25, 2026
casemark/gap-analysis
testing
VerifiedTrustedCommunity
Compares an organization's existing compliance controls, policies, and procedures against extracted regulatory obligations to identify coverage gaps. Produces a remediation plan with prioritized actions. Use when assessing compliance maturity or preparing for regulatory audits.
21SKILL.mdUpdated May 25, 2026