Protiviti Contact

Protiviti Contact

Jason Brucker

Managing Director


Jason is a Managing Director in Protiviti's Technology Consulting practice, and he leads Protiviti's Technology Strategy and Operations solutions in the West Region.  With certifications in IT audit, IT governance, IT service management, and project management, he has over 16 years of experience in information technology, internal audit, and risk consulting spanning a variety of solutions and industries. His experience includes a broad range of projects, from short-term audits and assessments, to full-scale process re-engineering and system implementation programs. Jason has also assisted multiple clients with implementation, operation, and improvement of their internal audit and compliance programs.


  • Assisted multiple pre-public companies with "IPO readiness" activities, including capability and gap assessments of IT infrastructure and processes, definition  and prioritization of improvement initiatives, and execution of capability improvement projects to address audit/compliance and IT operational performance requirements.

  • Led projects to improve IT governance and operations at multiple clients, including:

    • Multi-year IT transformation program at a regional insurance firm, focused on defining IT vision / strategy, establishing governance capabilities, redefining the organization, and implementing key enabling processes: business continuity, change / service management, and security.

    • IT governance strategy and roadmap development at a global retailer, focused on defining IT improvement priorities, decision making responsibilities, and selecting process automation tools.

    • Design and implementation of engineering release management processes to remediate major SDLC deficiencies in advance of a "Year 1" SOX compliance deadline at a web technology firm.

    • Year-long change and service management transformation program at a Fortune 500 regional utility, including change management process and redesign as well as ITSM software selection.

  • Managed over 50 IT and compliance-focused internal audit and process assessment engagements, including:

    • Co-sourced IT internal audit program management at multiple clients, including multi-year engagements with global retail, technology, and telecommunications firms.

    • Targeted high-value IT audits, including IT governance, software development lifecycle (SDLC), IT portfolio reviews, and enterprise application control assessment.

    • IT compliance control scoping and testing, including application of the GAIT methodology and ITGI SOX guidance to rationalize and expedite compliance efforts.

  • Jason has managed multiple system implementation projects, including ITSM solutions (e.g., BMC Remedy), enterprise GRC applications (e.g., SAP GRC), and custom-developed systems. 

Areas of Expertise

  • IT Governance

  • IT Operations Improvement

  • IT Project/Program Management

  • IT Service Management (ITSM) & ITIL

  • IT Internal Audit & Controls

  • Enterprise Applications & GRC

Industry Expertise

  • Consumer Products & Retail

  • Energy/Utilities

  • Financial Services & Insurance

  • Healthcare & Life Sciences

  • Technology, Media, & Communications


  • B.S. Chemical Engineering, Public Affairs Minor - Colorado School of Mines

Professional Memberships and Certifications

  • Certified Information Systems Auditor (CISA) – Information System Audit and Control Association (ISACA)

  • Certified in the Governance of Enterprise IT (CGEIT) – ISACA

  • ITIL Practitioner – Certificate in Release and Control

  • Project Management Professional (PMP) – Project Management Institute (PMI)

  • Certified ScrumMaster (CSM)