marsh.com

HTML metadata

Title: Marsh Risk | Global Leader in Insurance Broking and Risk Management
Description: Marsh is a global leader in insurance broking and risk management, providing consulting and advisory services across industries worldwide. Learn more.
Language: en-GB
Canonical: https://www.marsh.com/en-gb/home.html

Open Graph

url: https://www.marsh.com/content/marsh2/en_gb/home.html
title: Marsh Risk | Global Leader in Insurance Broking and Risk Management
description: Marsh is a global leader in insurance broking and risk management, providing consulting and advisory services across industries worldwide. Learn more.

Technology

CDN: Amazon CloudFront
Server: Apache

Analytics

Google Tag Manager

Cookie consent

Osano

Third-party hosts loaded (4)

assets.adobedtm.com×1
cmp.osano.com×1
rum.hlx.page×1
www.googletagmanager.com×1

Social

Registration

Registrar

MarkMonitor Inc.

Created

1997-07-11

Expires

2026-07-10 51 days left

Updated

2026-05-16

Name servers

ns01.mmc.com
ns03.mmc.com
ns04.mmc.com
ns05.mmc.com

DNS records live

NS

ns01.mmc.com
ns03.mmc.com
ns04.mmc.com
ns05.mmc.com

MX

5 mxa-001b7601.gslb.pphosted.com
5 mxb-001b7601.gslb.pphosted.com

TXT

Show 60 TXT records

iKnJEh4Z/G+12pFbZcmCh6LDB2a5gNhQ8Ieta3wBPNgBIz6/yqKcwaFruRee708OdxDNRZzzi12Y3AjiU5Fk1g==
d365mktkey=3ctA0xz0S6DvZxthtiPMx4FXeNQzITVOWdTv3VDAgXkx
_globalsign-domain-verification=IFaQyK07E-Ksc8NcwZ-ns7kxuRzmIKOXT-MFfKVJVn
adobe-idp-site-verification=913e4ed488bb8eccd8e2d2de5461f4ec10e6649b4d6410a4d03e0dabf4b522d2
amazonses:epm5i6J/3RRes73nsJ5ySUjiNgJ3WayRqFlemgmVFrs=
wiz-domain-verification=d0bf95814c9fa27b0adef5853d0fd78dd849e94cb81760b79ef05e85a94e3d87
00D1a000000YrcS=1TBa70000000ANZ
_acme-challenge.uat-iristxtQcfGK1TFZNKC-HjnierP1kJuPs4gODuLxjZbE94n9pw
cisco-ci-domain-verification=27cec54b73117ed7eec028c2e00a726f072f07aac9ba76c711a0bab4c16c689c
docusign=65a5e2c9-5f9d-4a80-8656-50701b2d7eb0
00DQE0000000J2f=1TBOa00000000OD
Ep8Y1Vf5cBwJcwQyTJ12hoVpWk7OwPvh0RHn+dCeZbgPTZSeGV4zEwi9HHGilyovyRZBDoFv8kPRxUyzZXCy9w==
0ed1fe018a7947983a28764bb7b90dc5b227aedfda
3AD5EBCDA91424D526C298FC0D7D7468379E22BEEAB74D31DF68E60B674C83A1
docusign=ff2e9780-148f-495c-8e29-cc927929ddd9
cloudhealth=19c285f6-d6c3-4cb4-b9a7-b2303bc9cf00
d365mktkey=1JxMP5Ufqk3upDLAbiRoysCs5xzEZa50gg8yQ7Nrcv0x
d365mktkey=jFIzDcyGfI62H0XhSjLrmccCY83kcIY3QgxDxxAXKHgx
d365mktkey=75LNvwioiCnyKlU3pzUfMlqjbxOpG1gH3zBw5mIFrtEx
d365mktkey=ErgfBC0WLmIIzMC1zat1zUfRExjMtfOEqs0VvOpW9Vwx
jamf-site-verification=lP_HYw89EqT6BRBc6_mi9A
paloaltonetworks-site-verification=5c35b44b67277b65715adf3f3159a5e8de4a8646c1a999589267dd4ba873ca36
anthropic-domain-verification-fgespr=qToQ4rrggGgEAToYLSi0wssHa
mongodb-site-verification=gyGHLqKU0KxVWjpUTq5lbq8dfNA6lVlN
_acme-challenge.iristxtebQtSd_0g9awFZfq08mQob3f2ivG_wjF3zckjjuvt_A
wiz-domain-verification=f5ea71fd0788359b3d2c7eba4b538b6bab5c14b5fb3645a56dd9ebbf635eb7d5
google-site-verification=fwvlmgE9igik3pObbm_rUBbFhzep8dfNNILBx-jLYnA
d365mktkey=8Xqw8pzxKXP5JeKfoUixHdYxs7jtvic300hnNVKjnEsx
atlassian-domain-verification=zUH3HeS6jWIavzHkMsMCHlKw8WpIGuLOR3gCFRvfGdkC95re1yJSP2EnkI4afd7i
google-site-verification=Zj-zAMBsyycWDR3VJjFoEPmHMYZ9NE12rQQXGsOD_kU
v=DKIM1;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCngVRa9qqc+bfE4O5u6CwSQ2iG7Kdf/WNBmVRrrV7WBiTNWKmtxEGQUw7wpLKih+t1EbPwR1HPfZmnXMXmiFejskKoA2sdhg2uYQCU2loi2P4docjsPisTOYNvxP1DJuvBuC2Fm2Y7/hlM0G2Ln1qZafmw4evbhGoEF60Tvb89zQIDAQAB
d365mktkey=Kc8xerteL1MgmGNIMMPbmY6lLO7VEoRpqLIce96gZTox
588b6846375bd9f37f344f4c06dcb3ac
amazonses:TfnZT7QmJapNauFsEWgBLtlCgWqEUTusCRn6A28togA=
atlassian-domain-verification=B5ipV+NJ90VqYy22o3me3cL4LPzBQUvt9d8ZTKjVDaQut9y15-lyKBDUHA/+lOc+
00D9h000004Jx0T=1TB9h000000006T
00DDn000002nia8=1TBOd00000000ZV
_acme-challenge.icargoTXTTCCfiWC65eaAdRnCNMIMHkvUVzEg8JVRliiswcMoWSM
atlassian-domain-verification=xnXr01aGBaNvXPwRM4W0ttOcpdlCVf7kK4ca1XTG5iDuJhwcNjOZNCUDovUd25LP
d365mktkey=2kqVkXxyqBmBylex36ofn5urjO3NYxHjF0N0TAax3sEx
smartsheet-site-validation=Oc07DLaTdJ-gg3mXSrGaN7XWQP0r0h1b
amazonses:7gbsJIlJCN038duu4e/fn+j5JRxX3HjOBxQfAiCZr2c=
SFMC-T-mzpFCxu3H5N5zWILHlSvWcED0hfKzD7cAUDlns
yt+umpNxKiKhrTUWGro/1XM28L0zSvsK/67ljVYcjXNGuxc1TAIwZAGG0aWA1eO9iKSGED9f4bZ2G3d/5jrjhQ==
d365mktkey=ScZvE4E9xqqbEB81Bl50Z6rTdN6uxZfxkJ0BVnEinbMx
DirectFedAuthUrl=https://mmc.oktapreview.com/app/mmc_taxautomate_1/exk2ocgtjv64ntRFE0h8/sso/saml
j5sr1tr6ww5gczgnvvnn4nnx32bnmhkz
00DWF00000Bpyob=1TBWF0000000KI5
d365mktkey=OoYx5SpRcvUMiRiukbtz9CylBIq4dA1457qOlxFTkGUx
00DDJ000000AHAT=1TBOg00000001aP
_acme-challenge.uat-icargotxtHIyDnzuYZRNj3XdoJBxjlszUy5z3n8YJ91usjx1oRPo
docusign=19b69040-9580-406b-a4ad-49540f74dc4d
MS=ms20058834
onetrust-domain-verification=290322a96bb040228adcc4f737667d98
google-site-verification=dDgMCPIdNyLLEqoplSCkoRTKQqUgjQjL7Jao7cLxN3I
0h39hbndtbqr6n9mdxbx7kgpcg3p6636
zywave-domain-verification=EqaEoZtpog2iKpMZWmWqWh5CVMmDW78JN/JgY+spYL8=
google-site-verification=nD1MmIY5c3fIAAqzbDwGazPHXR3kOJy2YIULjFJ9t9g
_acme-challenge.icargo-ssrsTXTeRHBM9aPNsa6b58XriX7wDZuyx4teXSd_fJqjzstWnU
pardot395202=12113bf27feadde824557fffeba2c8c5cf04ae8948d2c5e5f1b602556475c362

Email authentication strong

SPF

v=spf1 include:marsh.com._nspf.vali.email include:%{i}._ip.%{h}._ehlo.%{d}._spf.vali.email include:ncapp02.com ~all

softfail (~all)

DMARC

v=DMARC1; p=reject; rua=mailto:dmarc_agg@vali.email; fo=1; ri=3600

policy: reject (enforced)

DKIM

Show 5 DKIM selectors

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDTnbXAS9O03UFSTSH79flFsPWcmJfbuy6JLJMmPSdLaxVjmMCl5EkJ3KgqbO/YFhJrXGP3FrCTTbJXgGRfDe…
selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArHebZhcgpcNR8frkUW3VZtH+37K9NShZ9Dwlh6vhMk3bE0HujupfzbF4L5wCUMtQEDcMxg79CkMdmi…
k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoiTO0FBSsQ4MMXOLQHlST+goWf2WhS6XkhrH9O4SE+6jtUsmpV1rwn2RY+8u8Cz5EFaBQERvPHzRrFJCMg…
smtpapi: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPtW5iwpXVPiH5FzJ7Nrl8USzuY9zqqzjE0D1r04xDN6qwziDnmgcFNNfMewVKN2D1O+2J9N14hRprzByFwf…

selectors probed

Certificate (current)

Sectigo Public Server Authentication CA OV R36

from 2026-03-25 to 2026-07-30

Expires in 71 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.marsh.com/en-gb/home.html

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

CSP uses wildcard sources
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self' https://customervoice.microsoft.com https://*.foleon.com https://api.kscope.io https://*.company-target.com https://payments.marsh.com https://info.marsh.com https://mfpembedcdnwus2.azureedge.net https://datawrapper.dwcdn.net https://privacyportal-cdn.onetrust.com https://privacyportal.onetrust.com https://consent-pref.trustarc.com https://consent.trustarc.com https://html5-player.libsyn.com https://www.googleadservices.com https://view.ceros.com https://marsh-fl.ceros.site https://platform.twitter.com https://consent.api.osano.com https://cmp.osano.com https://disclosure.api.osano.com https://undefined.fls.doubleclick.net https://td.doubleclick.net https://mmc.demdex.net https://www.googletagmanager.com https://ad.doubleclick.net https://www.google.com https://mercer.tt.omtrdc.net https://dpm.demdex.net https://www.facebook.com https://player.vimeo.com https://vimeo.com https://www.youtube-nocookie.com https://siteintercept.qualtrics.com https://tattle.api.osano.com
strict-transport-security: max-age=31536000; includeSubdomains; preload