The frequency and magnitude of data breaches are increasing. Boards of directors and executive management, in addition to IT departments, are more focused on better management and protection of IT systems and data than ever before. Increasingly, data security and privacy management are becoming a major issue for IT departments.
However, a “check the box” approach to compliance will not protect a company’s reputation. Proactive measures and policies do. An approach that focuses on three core concepts - identifying and securing a company’s most valuable assets, continuous monitoring, and structured, fast response to a data breach - provide the clarity to move forward confidently.
Leveraging industry best practices, Protiviti provides expert-level data security and privacy management to FORTUNE Global 500® and FORTUNE 1000® companies in more than 20 countries. Protiviti also serves ASX listed companies in Australia. Protiviti’s risk-based approach is comprehensive and focuses on creating a secure environment to protect data and comply with Data Protection Law Australia and The Privacy Act 1988.
Why medical device security is something we should all care about
The Privacy Act 1988 (Privacy Act)
Privacy Awareness Week Highlights
Watch Protiviti Australia's Data Security and Privacy experts in action and access useful information to protect your organisation.
Our Data Security and Privacy Management Solutions Include:
Protiviti data security and privacy professionals can work with you to ensure you have a complete inventory of the data you have collected in your enterprise and where it is stored. In addition to helping, you rationalise the various data you have about clients, partners, and employees, we can help you improve your data compliance posture.
Many organisations are becoming aware they need to be more efficient in managing data and responding to regulatory imperatives such as Data Protection Act Australia and The Data Privacy Act 1988. Protiviti’s data classification professionals can help refine your data classification policies and procedures to more efficiently comply with regulations, and to derive more value from your data.
Protiviti can assist you in determining where all your critical data resides and what data is leaking. We work with you to design a data leak prevention strategy, select and tune the most appropriate technologies, implement your overall data leakage prevention programme, and evaluate results.
Encryption & Storage Strategy
Our professionals can help you prioritise the data to address as well as the systems and endpoints that will ultimately store them. We can assist you in building a data protection strategy, identifying appropriate data to focus on, and guiding you on how to manage this complex environment and helping you implement effective solutions.
Privacy Management & Implementation
We can assist you in refining or creating data privacy policies, establishing operational procedures and controls and building programmes. Where legal opinion is required, Protiviti has outstanding legal partners to provide you with a technical, regulatory, and legal perspective.
PCI Planning, Readiness & Compliance
Our team works to help you plan and prepare for certification as well as remediate issues found in early assessments. We help you comply with PCI DSS compliance requirements, understand what private data is collected and where it is stored, train employees about company policy for handling private data and ensure data loss prevention, how to respond efficiently to a situation of a data breach, integrate a crisis–management process, and implement a privacy risk management process.
HITRUST Planning and Readiness Services
Protiviti provides trained practitioners who use their extensive data security and privacy experience to help you prepare for HITRUST certification, remediate issues, and manage your risks related to handling personal health information (PHI).
Vendor Management/Due Diligence
Protiviti's professionals have extensive experience supporting clients globally with their vendor programmes. We can leverage your internally developed programmes and ensure uniform global delivery, providing data consistency and allowing valid year-to-year or partner-to-partner comparisons.