Skip to main content
Marsh logo

Podcast

Risk in Context Podcast: Better Cyber Hygiene Through Security Controls

In this episode of Marsh’s Risk in Context podcast, Marsh’s Rachel Lavender is joined by MOXFIVE’s Jeff Chan and CrowdStrike Services’ Shelly Geisbrecht for a look at the cybersecurity controls companies can adopt and implement to improve their cyber hygiene.

10/25/2021

With cyberattacks growing in size and complexity — and underwriters more closely scrutinizing their cyber risk exposures — it’s vital that businesses invest in robust cybersecurity controls.

In this episode of Marsh’s Risk in Context podcast, Marsh’s Rachel Lavender is joined by MOXFIVE’s Jeff Chan and CrowdStrike Services’ Shelly Giesbrecht for a look at the cybersecurity controls companies can adopt and implement to improve their cyber hygiene.

Apple Podcast Spotify Podcast
Download transcript

Key takeaways

Three cyber hygiene controls are increasingly tied to insurability and resiliency: endpoint detection and response, multifactor authentication, and backups.

Endpoint detection and response (EDR) can provide crucial visibility across all systems in a corporate technology environment.

It helps prevent bad actors from gaining a foothold in IT systems. EDR is often not difficult to implement, and can be rolled out within a matter of days.

Secured, encrypted, and tested backups are essential to recovery after an attack, and threat actors are increasingly targeting such backups for deletion.

Companies can mitigate this risk by following the 3-2-1 backup rule: three copies of data, two different media types, and one offsite copy.

Multifactor authentication (MFA) can provide an extra layer of protection when employees and other users are using critical applications or accessing networks remotely.

But MFA can be difficult to implement, depending on how many users an organization has, where they are located geographically, and how tech savvy they are.

About our speakers

Placeholder Image

Rachel Lavender

US and Canada Cyber Brokerage Leader

Placeholder Image

Jeffrey Chan

Senior Director, MOXFIVE

  • United States

Placeholder Image

Shelly Giesbrecht

Incident Response, CrowdStrike

  • United States

Related insights

Aerial view of crowd connected by lines

Article

Solving the cyber risk financial dilemma

04/11/2024
A guide to navigating the US securities and exchange commission’s cybersecurity risk management, strategy, governance, and incident disclosure rules.

Report

Navigating the SEC’s cybersecurity disclosure rules

01/07/2024
Estuary at Bair Island Marine Park in Redwood City, CA

Article

Uncovering first- and third-party cyber risks

10/25/2023
Underwater view with tuna school fish in ocean. Sea life in transparent water

Article

New SEC rules place deadline on disclosing material cyber events

08/18/2023
View more