Marsh is an insurance broking and risk management firm that works with clients to define, design, and deliver offerings to better quantify and manage risk. The company offers risk consulting, insurance broking, alternative risk financing, and insurance program management services to businesses, government entities, organizations, and individuals. It has a presence spread across 130 countries.
Marsh is a wholly-owned subsidiary of Marsh & McLennan Companies, a global professional services firm that provides clients with advice and offerings in the areas of risk, strategy, and people.
Marsh cyber risk offerings are primarily centered around consulting services that address the essential elements of cybersecurity, from strategy, governance, and enterprise risk management to control architecture, implementation, and management.
- Enterprise-wide cybersecurity program review and road mapping: Includes risk assessment, testing, performance validation, and joint roadmapping.
- Cybersecurity risk quantification: Includes enterprise risk management and modeling the cyber operating environment, and generating a dashboard view of the “cyber value-at-risk.”
- Security technical controls review: Includes review of cybersecurity technical controls environment, assessment of the enterprise cybersecurity architecture and technical controls, and evaluation of operational effectiveness.
- Third-party cybersecurity risk management review: Helps in identifying likelihood of cyber risk based on third-party relationships.
Scenario-based cyber exercises: Includes executive-level tabletop exercises, test assumptions, operational processes, validating external resources, and points-of-contacts (POCs).