Marsh report: How to reduce risk with effective cybersecurity controls

The latest report from Marsh McLennan’s Cyber Risk Intelligence Centre explores which cybersecurity measures truly make a difference in reducing risk. Our report also aims to advance the conversation about control evaluation within the cybersecurity community. Building on the foundation established by our groundbreaking 2023 publication, Using Data to Prioritise Cybersecurity Investments – which provided a data-driven, evidence-based analysis of cybersecurity control effectiveness – our Cyber Risk Intelligence Centre has analysed thousands of organisations’ cyber control implementations. The findings reinforce the importance of foundational cybersecurity practices – shifting the focus from whether a control is in place to how it is deployed. Our report will help you: 🏫 Learn how the cybersecurity control landscape has evolved over the past two years to keep your organisation’s practices current and effective. 💻 Gain insight into which cybersecurity controls are most widely adopted – and which are most effective. 🛡️ Focus on the top five control areas identified as most effective in lowering your organisation’s risk exposure. #cyber #risk #riskmanagement #riskcontrols #cyberinsurance

Failing to Plan = Planning to Fail. The recently released Marsh report "Cybersecurity Signals: Connecting Controls and Incident Outcomes" finds that organizations that regularly engage in tabletop exercises and scenario-based breach response drills are 13% less likely to experience a material cyber event than those that do not. Despite being focused on post-breach activities, cyber incident response planning has emerged as a key cybersecurity control in reducing a company's likelihood of experiencing a breach-related claim “Our findings emphasize that simply deploying key cybersecurity controls is no longer enough—these tools must be properly managed and comprehensively used,” said Scott Stransky, Head of Marsh McLennan’s CRIC. “By drawing on our insights, organizations can make informed decisions to strengthen their security frameworks and help reduce their exposure to cyber risks.” “Marsh has long advocated proactive cyber incident response planning as a tool to help organizations effectively and efficiently respond to and recover from a cyberattack,” said Thomas Reagan, Global Cyber Practice Leader, Marsh. “What our latest research confirms is that thoughtful planning also drives secondary benefits like positive security behaviors and strong control implementations, which help build more organizational resilience and reduce breach incidents.” #CyberLiability #CyberBreach #CyberBreachResponse #Cybersecurity #CyberControls #CyberHygene #IncidentResponsePlanning #TabeltopExercises #OrganizationalResilience https://lnkd.in/gaN5Ywqv

Despite being focused on post-breach activities, cyber incident response planning has emerged as a key #cybersecurity control in reducing an organization’s likelihood of experiencing a #breach-related claim, according to a new report from the Cyber Risk Intelligence Center (CRIC) of Marsh McLennan. The report found that organizations who regularly engage in #tabletop exercises and scenario-based breach response drills are 13% less likely to experience a material cyber event than those that do not. The report also highlights the importance of effectively deploying and managing other key cybersecurity controls, such as #EDR deployment and #MFA that is resistant to phishing schemes. Marsh has long advocated proactive cyber incident response planning as a tool to help organizations effectively and efficiently respond to and recover from a #cyberattack. What our latest research confirms is that thoughtful planning also drives secondary benefits like positive security behaviors and strong control implementations, which help build more organizational resilience and reduce breach incidents. Follow the link below for a copy of the report. #BreachResponse #Cyber #CyberIncidentResponse #CyberRiskIntelligence #CyberLiability #CyberBreach #CyberIncidentManagement https://lnkd.in/gaN5Ywqv

🔎How to Conduct an IT Security Risk Assessment ➡️ https://lnkd.in/g7STcbMe Understanding the importance of risk assessment is the first step for companies to better defend against cyber threats, ensure regulatory compliance, and maintain the integrity and confidentiality of their data. In this blog you'll discover: ✅ Why IT security risk assessments matter ✅ Key benefits of conducting an IT and cybersecurity risk assessment ✅ Core components of an assessment ✅ The IT security risk assessment process: Step-by-step ✅ What Prime Secured's complimentary network security assessment includes ✅ Why you should partner with Prime for your risk assessment Curious to know the state of your IT infrastructure? Schedule a complimentary cybersecurity risk assessment with us today and receive a clear roadmap to elevate your defenses and compliance posture. 👉 https://hubs.li/Q03FvVMk0 Don't wait for a breach to uncover your vulnerabilities. #NewBlog #RiskAssessment #CyberThreats #ScheduleToday

Love being audited? Of course not! Uncovered mistakes equal costly surprises usually followed by penalties and interest. Horrible to think about. Now try a data breach... Gaps in security or unintended negligence can have devastating and lasting consequences. Consider this your sign to evaluate your current level of IT security and stop laying awake at night fearful of the unknown. The truth is, every company and organization, big or small, is susceptible to disastrous cyber threats in todays evolving IT world. Use Prime Secured's latest blog on conducting Risk Assessments to bolster your understanding of cybersecurity and how you can protect the health of your business! #RiskAssessment #CyberThreats #PrimeSecured

For Sunbelt businesses navigating growth, cybersecurity can’t be an afterthought. I wanted to share information about a cybersecurity readiness assessment by our team at CLA (CliftonLarsonAllen) — it’s designed to help quickly evaluate your current risk posture and identify areas for improvement. I’ve seen how helpful it’s been for clients as we see news of new cyber threats daily. If you’re not sure how secure your systems really are, an assessment is a smart place to start. #CLAClientSuccess

While you normally see me post on the criticality of #cybersecurity for the #financialservicesindustry, the reality is cyber threats don’t care what industry you’re in or where you’re located. If you have information, you’re a target. That’s why businesses across the Sunbelt, from fast-growing startups to established organizations are asking the same question: “𝘼𝙧𝙚 𝙬𝙚 𝙧𝙚𝙖𝙡𝙡𝙮 𝙧𝙚𝙖𝙙𝙮 𝙛𝙤𝙧 𝙩𝙤𝙙𝙖𝙮’𝙨 𝙘𝙮𝙗𝙚𝙧 𝙧𝙞𝙨𝙠𝙨?” A cybersecurity readiness assessment is a practical way to get answers. It helps you benchmark your current defenses, uncover blind spots, and build a roadmap to stronger protection. At CLA (CliftonLarsonAllen), we’re helping businesses across industries take that first step toward resilience. If you’re not sure where you stand, this is a smart and straightforward place to begin: https://lnkd.in/eH-mFtSp #CLAClientSuccess

🔐 Cyber threats are growing — is your business prepared? At Manguele Advisory Group, we help organisations strengthen their cybersecurity posture with: ✅ Risk assessments ✅ Data protection frameworks ✅ Incident response planning A secure business is a sustainable business. #Cybersecurity #RiskManagement #DataProtection #BusinessGrowth

🔐 Is your business cyber secure? Introducing CyberAssess - our comprehensive cybersecurity audit and assessment service that helps businesses: - Identify and assess risks - Align with standards like Cyber Essentials, ISO 27001, and NIST - Access real-time risk dashboards - Plan budgets and roadmaps for robust, cost-effective protection - Demonstrate compliance to stakeholders Backed by nearly 20 years of industry expertise, we deliver actionable insights that provide peace of mind and a stronger cyber posture. Let’s build your cybersecurity roadmap today. 👉 Find out more: https://zurl.co/PIvkE 👉 View the complete CyberShield solutions suite https://zurl.co/h45hB #Cybersecurity #RiskManagement #Compliance

How do cybersecurity consulting services improve business continuity? In today’s digital economy, one cyber incident can disrupt entire operations, damage reputation, and cost millions. That’s why cybersecurity consulting is no longer “optional” — it’s a critical part of ensuring business continuity. In our latest blog, we explore: ✅ How proactive risk assessments help uncover vulnerabilities before attackers do ✅ Why incident response planning reduces downtime and financial losses ✅ The role of compliance and governance in building long-term resilience ✅ How expert consultants empower teams with knowledge and best practices Cybersecurity consulting is not just about technology — it’s about protecting your business, your clients, and your future. Read the full article here: https://lnkd.in/egxmyTqn #Cybersecurity #BusinessContinuity #RiskManagement #Astarios