Skip to main content
Marsh logo

Podcast

Risk in Context Podcast: Strengthening resilience through effective cyber threat management

In this episode our hosts discuss the importance of reviewing and reinforcing cyber controls to help minimize cyber exposures and uncertainty with the goal of better protecting people, finances, and operations from cyber threats.

30/09/2025 · 1 minute read

In an era marked by uncertainty, including due to geopolitical and geoeconomic tensions and supply chain disruptions, organisations continue to face an increasingly complex cyber threat landscape.

With threat actors employing both traditional and emerging tactics, there is urgency for organisations to implement a comprehensive risk management strategy that helps them effectively mitigate risks and improve resilience. As explored in Cybersecurity Signals, Connecting Controls and Incident Outcomes, organisations that regularly test and align their incident response and employee awareness training are better positioned to manage crises efficiently.

In this episode of Risk in Context, Dan Bowden, Global Business Chief Information Security Officer at Marsh McLennan, speaks with Helen Nuttall, UK Head of Cyber Incident Management at Marsh, and Matthew Berninger, Principal Cyber Analyst at Marsh McLennan's Cyber Risk Intelligence Center. They discuss the importance of reviewing and reinforcing cyber controls to help minimise cyber exposures and uncertainty with the goal of better protecting people, finances, and operations from cyber threats.

Apple Podcast Spotify Podcast
Download transcript

Key takeaways

Evolving threats demand continuous adaptation

As threat actors become increasingly sophisticated and employ a wider range of advanced tactics, organisations must stay vigilant and adapt their defenses to emerging attack methods and evolving risk landscapes.

Coordinate cross-functional efforts to improve resilience

A unified approach and advanced preparations that involve technology, legal, HR, and operations teams are essential for effective cyber risk mitigation, helping align incident response plans and enabling a swift response to incidents.

Focus on proactive cyber threat management

Organisations should consider a comprehensive cybersecurity strategy that integrates controls across people, processes, and technology to help mitigate evolving threats and minimise operational disruptions.

About our speakers

Daniel Bowden

Daniel Bowden

Global Business Chief Information Security Officer (CISO), Marsh McLennan

  • United States

Daniel Bowden was appointed global CISO for Marsh McLennan in 2022. An accomplished cybersecurity and technology executive, he is responsible for overseeing the company's cybersecurity strategy, risk management, and incident response. His role involves developing and implementing comprehensive security policies, facilitating regulatory compliance across the organisation, and fostering a culture of security awareness throughout the organisation.

Helen Nuttall

Helen Nuttall

UK Head of Cyber Incident Management, Marsh

  • United Kingdom

Helen Nuttall heads Marsh’s UK Cyber Incident Management, where she helps clients prepare for, respond to, and learn from cyber incidents. She forms part of the UK cyber leadership team. Throughout her career, she has supported hundreds of organisations through major cyber and privacy events, data breaches, and litigation and was involved in transformation projects related to the EU’s General Data Protection Regulation (GDPR).

Matthew Berninger

Matthew Berninger

Principal Cyber Analyst, Marsh McLennan's Cyber Risk Intelligence Center

  • United States

Matt Berninger serves as a principal cyber analyst at the Cyber Risk Intelligence Center (CRIC), Marsh McLennan’s award-winning, enterprise-wide global cyber data, analytics, and modeling center of excellence. In his role at the CRIC, he focuses primarily on security strategy, detection and response, and intelligence analysis, most recently through the Cybersecurity Signals, Connecting Controls and Incident Outcomes report. 

This publication is not intended to be taken as advice regarding any individual situation and should not be relied upon as such. The information contained herein is based on sources we believe reliable, but we make no representation or warranty as to its accuracy. Marsh shall have no obligation to update this publication and shall have no liability to you or any other party arising out of this publication or any matter contained herein. Any statements concerning actuarial, tax, accounting, or legal matters are based solely on our experience as insurance brokers and risk consultants and are not to be relied upon as actuarial, accounting, tax, or legal advice, for which you should consult your own professional advisors. Any modelling, analytics, or projections are subject to inherent uncertainty, and any analysis could be materially affected if any underlying assumptions, conditions, information, or factors are inaccurate or incomplete or should change.

Page Compliance ID