Yes. You're probably already doing many things to protect your organization. If you're using firewalls, intrusion detection, antivirus, etc. then you are reducing your risk.
Statistically, the best method for reducing cyber risk is by improving employee behavior. If you're taking care of that, then you're doing really well!
Still, no risk mitigation tools (including ours!) can completely eliminate your risk. You can protect your organization in many ways, but the best possible protection level can only be achieved with cyber insurance combined strategically with employee awareness and prevention tools.