Sharing our expertise on key governance issues Marsh McLennan delivers advisory and market-leading solutions to help our clients advance their resilience agendas in the areas of cyber, risk and ESG. By combining strategic solutions with quanti昀椀ed risk measurement, we help clients manage their business risks with con昀椀dence. Mitigating cyber risk Cyber EU engagement Marsh McLennan’s Cyber Risk Analytics Center is a firm-wide resource that Marsh McLennan has kept up its efforts to provide the European Union’s combines the cyber risk data and analytics expertise of Marsh, Guy Carpenter policymakers with the knowledge and data they need to make informed decisions and Oliver Wyman to provide clients with a comprehensive view of their cyber on cyber insurance. threats, the maturity and availability of their existing and future controls, and the economic impact of their risk. The Center also conducts research and To that end, we convened a meeting with ENISA, the European Union’s cyber development with a global network of commercial, government and academic defense agency, and employees from throughout the company to talk about the partners and integrates the data, modeling and risk expertise of our businesses. state of cyber insurance in Europe. This information contributed to ENISA’s report examining insurance uptake in vital EU sectors. Cyber US engagement • Our President & CEO, John Doyle, met with the Office of the National Cyber Director to discuss how insurance is essential to cybersecurity. After the discussion, the Marsh Cyber Practice team published a white paper for the Office of the National Cyber Director on signs of a strong cyber insurance market and its impact on cyber framework security. John Doyle and Marsh Cyber Practice Team members briefed the CISA on our cyber insurance priorities. • Marsh and Guy Carpenter authored the paper “Signs and Signals of a Healthy Cyber Insurance Market” to inform policymakers about the role of cyber insurance in enabling economic activity. The report analyzes key indicators of an effective cyber insurance marketplace and considers potential US government actions to address systemic cyber events. • Tim Marlin of Marsh testified at a Department of Labor hearing on cyber insurance and employee benefit health plans. • Marsh McLennan colleagues spoke to government stakeholders at the 2022 Billington Cybersecurity Summit. President & CEO John Doyle met with policymakers to discuss the importance of cyber insurance for cyber security and how it makes institutions and businesses more resilient in the face of cyber risk. Overview Environment Social Governance Appendix 2022 ESG REPORT 59