John Nahas is a Vice President of Cybersecurity Consulting and Advisory Services at Marsh Risk Consulting. He collaborates with MRC leadership to provide cyber technical expertise for clients and enterprise-wide with Marsh colleagues on a wide range of cyber risk consulting offerings and capabilities. John leads cyber consulting engagements in the financial services, higher education, retail, and professional services industries. He is currently based in the Washington, D.C. office.
John has over 12 years of experience in cybersecurity management consulting. Prior to joining MRC in February 2016, he served as director of Global Information Security and Privacy at Sony Corporation. John previously served as a senior manager of cybersecurity consulting at ICF International and held information security managing consultant roles at Deloitte & Touche and KPMG. John maintains the following cyber/information security certifications: Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), ISO/IEC 27001 Lead Auditor, and Certified in Risk and Information Systems Control (CRISC).
John has a B.S. in Business Administration from American University and M.S. in Information Systems Technology from George Washington University.