Protiviti Contact

Protiviti Contact

Ana Amato

Managing Director


Ana is a Managing Director in Protiviti Atlanta Internal Audit (“IA”) practice and has provided internal audit and risk consulting services to some of our key clients in the telecommunications, manufacturing, healthcare, insurance, and oil and gas industries. She has 15 years of experience in financial, operational, and compliance audits, process and controls (including Sarbanes-Oxley, J-SOX, and Model Audit Rule compliance projects), and due diligence reviews. Ana also leads and develops enterprise risk assessments and programs. She has a QAR accreditation to perform quality reviews as part of our Internal Audit activities. She serves on our National SOX Champions Network. 


  • Enterprise Risk Management
  • Internal Audit Co-Sourcing & Outsourcing
  • Sarbanes-Oxley 404 process and controls documentation and testing
  • Quality Assurance Review
  • Policies and Procedures Development


  • Manage enterprise and process level risk assessments including information gathering through interviews of key executives, identifying and prioritizing risks based on the significance and likelihood to the organization, and providing recommendations on next steps. 
  • Perform Sarbanes-Oxley, Section 404 assessment of client’s control documentation and testing, identification of significant accounts, inherent and control risks, mitigating controls; plan, perform, and review process walkthroughs, substantive control testing, and assessment of control deficiencies.
  • Performs Sarbanes Oxley Project to Process Reviews to help streamline year over year improvements to the 404 control structure, including control rationalization and business process improvements.
  • Assist Japanese subsidiaries with J-SOX compliance.
  • Assist healthcare payer provider with Model Audit Rule (MAR) compliance.
  • Perform gap assessment reviews to evaluate policies and procedures. Assist in the design and implementation of future state policies and procedures (i.e. Compliance, Credit Administration, Core Bank)
  • Plan, perform, and review substantive internal audit engagements related to cash controls, travel and entertainment expenditures, inventory management, and purchase to payables policies and procedures in the oil and gas, manufacturing, retail, healthcare and pharmaceutical industries.
  • Manage financial aspects of co-sourced IA relationships, resource planning, and overall client relationship, while also responsible for overall project management, including engagement planning, budgeting, tracking, and billing.


  • Certified Internal Auditor
  • Certification in Risk Management Assurance
  • MBA, 2007 Emory University
  • BS Finance, 2002 Louisiana State University
  • Fluent in Spanish

Areas Of Expertise

  • Internal Audit 
  • Sarbanes-Oxley 404, J-SOX, MAR
  • QAR 
  • ERM

Industry Experience

  • Telecommunications
  • Oil and Gas
  • Pharmaceutical
  • Manufacturing
  • Insurance
  • Healthcare
  • Professional Services
  • Financial Services
  • Software

Service line

  • Internal Audit
  • Enterprise Risk Management