Marc Brawner



Global Head of Managed Services

Marc Brawner is a managing director and Global Head of Managed Services in Kroll’s Cyber Risk team, based in Nashville, TN. With a broad business, technology, and cybersecurity background spanning three decades, today Marc leads Kroll’s managed services, including its award-winning Kroll Responder managed detection and response (MDR) business – protecting organizations around the world from active and emerging cyber threats.

Kroll Responder

As an executive with extensive business, technology, and cybersecurity leadership and operations experience spanning three decades, Marc’s work has positively impacted organizations across the globe.

As a practitioner and engagement manager, Marc has conducted hundreds of digital forensics and incident response investigations for clients across a broad range of industries and including high-profile matters including state-sponsored corporate espionage, supply-chain attacks, payment card theft, and insider trading. Over the last decade, Marc helped pioneer and expand the industry’s use of endpoint detection and response technologies to accelerate remote incident response and digital forensics – a precursor to today’s managed detection and response market.

As an advisor, Marc has been engaged in multiple disputes and litigation matters, including notable work related to the Enron bankruptcy, multiple FTC and SEC investigations, corporate M&A disputes, and the NotPetya attacks. Additionally, Marc has led technology audits and risk assessments, conducted technical and board level tabletop exercises, and engineered and managed enterprise network, technology, and cybersecurity solutions. Marc has been a panelist and presenter at a variety of industry conferences and has been deposed and testified at federal trial.

As an executive, Marc has built, integrated, and led large high-performance teams and cross-functional operations around the globe, developed and executed business and organizational strategies, created and managed strategic product and vendor partnerships, and managed key client relationships. From 2006-2013, Marc led Marsh & McLennan companies’ global incident response and risk assessment teams, where he integrated and transformed its global threat hunting, DFIR, vulnerability management, and vendor risk management capabilities.

Education and Current Affiliations

  • B.S., Computer Science, Lipscomb University
  • Certified Information Systems Security Professional (CISSP) (2001-present)
  • Senior Member, Information Systems Security Association (ISSA)

Selected Media and Speaking Engagements

  • Panelist, NetDiligence Cyber Risk Summit, “Decluttering EDR, MDR, XDR and NGAV”
  • Marilia Wyatt, Wall Street Journal Pro Research, “Understanding the Nation-State Threat”
  • Contributor, “Building a High-Speed SOC”, VMWare Carbon Black
  • Keynote Panel, Carbon Black Connect Conference, “Bracing for the biggest threats of 2019”
  • Speaker, Tennessee Bankers Association Conference, “Who has the ball in IT, Cyber vs Information Security”
  • Speaker, Tennessee Department of Homeland Security – Cybersecurity Conference, "You’ve Been Compromised, Now What?"
  • Panelist, RIMS Conference, Real Estate Industry Session, “Business Email Compromise”
  • Keynote Speaker, Tennessee Higher Education IT Symposium, “In a rapidly changing [cyber] world, some things haven’t changed”
  • Moderator, Kroll General Counsel and Legal Cyber Security Summit, “Modern Cyber Tools for Risk Identification and Mitigation”
  • “Common security mistakes, familiar threats confront cyber planners in 2019,” Inside Cybersecurity
  • WZTV Nashville, Parking Payment Card Security
  • NetDiligence Cyber Risk & Privacy Liability Forum, “Cyber Simulation: Experience the Breach”
  • IAPP Global Privacy Summit, “Payment Card Breaches, PCI DSS 3.2 Adoption, and Beyond”
  • Speaker, B-Sides Nashville, “It’s not if… But When – How to Build Your Cyber Response Plan”
  • Speaker, SANS Threat Hunting Conference, “Evolving Threat Hunting to Keep Up with Skilled Adversaries”
  • Advisen Conference, “Hacking Hole in One – Time, Cost, and Visibility Benefits of Using Endpoint Threat Monitoring”

Cyber Risk

Incident response, digital forensics, breach notification, managed detection services, penetration testing, cyber assessments and advisory.

Managed Security Services

World-renowned cyber investigators and leading technology fuel Kroll’s managed security services, augmenting security operations centres and incident response capabilities.

Kroll Responder

Stop cyberattacks. Kroll Responder managed detection and response is fueled by seasoned IR experts and frontline threat intelligence to deliver unrivaled response.