Skip to main content
Marsh logo

Event

India Cyber Conference 2025

Two cities. One mission - to redefine the art of cyber risk management.

09/12/2025 · 2 minute read

We recently concluded the India Cyber Conference 2025 series which took place on 4 November in Bangalore & 7 November in Delhi. Here’s an overview of the events from both the cities. 

The discussions collectively illuminated the dynamic and multifaceted nature of India’s digital governance and cyber resilience journey. Mr. Nand Kumarum’s keynote underscored the ambitious scale of India’s digital public infrastructure and the centrality of cybersecurity in safeguarding billions of transactions while fostering digital trust and data governance. The panel discussions expanded this perspective by highlighting the evolving cyber risk landscape marked by complex threats such as AI-driven attacks, supply chain vulnerabilities, and regulatory shifts, emphasizing the critical role of board-level accountability, cross-functional collaboration, and cyber insurance as integral to risk management.

The fireside chat with Mr. Rakesh Udupi brought a pragmatic enterprise viewpoint, stressing the transition from reactive to predictive security models, embedding cybersecurity into business strategy, and the importance of talent diversity and operational readiness to sustain resilience. Together, these insights chart a comprehensive roadmap for India’s digital ecosystem, advocating for deeper public-private partnerships, intelligence-led strategies, and a culture of continuous improvement to navigate an increasingly volatile cyber.

 Key Takeaways:

  • India’s digital public infrastructure (DigiLocker, UMANG, Aadhaar) is foundational to national transformation, with cybersecurity as a core enabler.
  • Protecting systems handling billions of transactions requires balancing security with accessibility across diverse regions.
  • Emphasis on data governance, digital trust, secure authentication, continuous monitoring, and cyber hygiene at scale.
  • Rising cyber threats necessitate enhanced collaboration among government, regulators, enterprises, and security leaders.

  • Shift from traditional cyber threats to complex challenges including AI-driven attacks, data privacy violations, and supply chain risks.
  • Increasing board-level accountability with CXOs and independent directors expected to understand cyber exposure and regulatory obligations.
  • Cyber insurance adoption is growing but uneven; underwriting now considers systemic ransomware, supply chain disruptions, and business interruption.
  • Financial impact of cyber incidents often stems more from downtime and reputational damage than direct technical losses.
  • Risk management requires coordinated action across internal teams, insurers, brokers, and external specialists.

  • Transition from reactive security to predictive, intelligence-driven models leveraging threat intelligence and continuous monitoring.
  • Cybersecurity must be integrated into business strategy, product development, and customer trust frameworks.
  • Talent diversity across threat hunting, governance, architecture, and risk interpretation is critical for defense depth.
  • High-maturity incident response playbooks, simulation exercises, and stakeholder coordination are essential for swift recovery.
  • Cyber resilience is measured by the speed and confidence of detection, response, and recovery, not by the absence of incidents.

  • Cybersecurity is a board-level priority requiring alignment between IT, security, legal, finance, operations, and leadership.
  • Building a security-first culture depends on awareness programs, leadership sponsorship, and clear communication of risks to non-technical stakeholders.
  • Privacy and cybersecurity governance must be unified, with clear accountability and continuous data lifecycle oversight.

  • The DPDP Act and sectoral guidelines are reshaping organizational responsibilities, elevating the role of Data Protection Officers.
  • Cyber risk quantification and measurable frameworks are essential for prioritizing investments and justifying budgets.
  • Cyber insurance, combined with strong controls and incident readiness, is a strategic tool for financial protection and resilience.
  • Public-private partnerships are critical to accelerating India’s digital journey and strengthening national cyber readiness.

More Cyber updates from Marsh India

Placeholder Image

Podcast

The second podcast series on Incoming Multinationals in India: Decoded – DPDP & Cyber Insurance: Impact, Readiness & The Way Forward

31/10/2025
Placeholder Image

Report

Cyber Self-Assessment

27/11/2022
Top view of the forest trees and the road through the forest. Aerial photo of the forest, drone.

Article

Exploring the insurability of fines and penalties under the DPDP Act: Insights from Marsh India and Khaitan & Co

08/01/2025

Marsh India Insurance Brokers Pvt Ltd is a subsidiary of Marsh McLennan. This document is not intended to be taken as advice regarding any individual situation and should not be relied upon as such. The information contained herein is based on sources we believe reliable, but we make no representation or warranty as to its accuracy.

Marsh shall have no obligation to update this publication and shall have no liability to you or any other party arising out of this publication or any matter contained herein. Any modelling, analytics, or projections are subject to inherent uncertainty, and the Marsh Analysis could be materially affected if any underlying assumptions, conditions, information, or factors are inaccurate or incomplete or should change. Insurance is the subject matter of the solicitation. For more details on risk factors, terms and conditions please read the sales brochure carefully before concluding the sale.

Prohibition of Rebates - Section 41 of the Insurance Act, 1938; as amended from time to time: No person shall allow or offer to allow, either directly or indirectly, as an inducement to any person to take or renew or continue insurance in respect of any kind of risk relating to lives or property in India, any rebate of the whole or part of the commission payable or any rebate of the premium shown on the policy, nor shall any person taking out or renewing or continuing a policy accept any rebate, except such rebate as may be allowed in accordance with the published prospectuses or tables of the insurer. Any person making default in complying with the provisions of this section shall be punishable with a fine which may extend to ten lakh rupees. 

Marsh India Insurance Brokers Pvt. Ltd. having corporate and the registered office at 1201-02, Tower 2, One World Center, Plot-841, Jupiter Textile Compound Mills, Senapati Bapat Marg, Elphinstone Road (W), Mumbai 400 013 is registered as a composite broker with Insurance and Regulatory Development Authority of India (IRDAI). Its license no. is 120 and is valid from 03/03/2024 to 02/03/2027. CIN: U66010MH2002PTC138276.

Copyright 2024 Marsh India Insurance Brokers Pvt Ltd. All rights reserved.