Protiviti Contact

Protiviti Contact

Manisha Agarwal-Shah

Managing Director

Professional Experience

Manisha is a Managing Director in the Security & Privacy practice based out of New York and is Protiviti’s Global Privacy Solutions Leader. She is an experienced technology professional, with more than 13 years of experience working in privacy, cybersecurity, data protection and the regulatory space. She has an established track record of directing and building exceptional teams, executing on strategy and driving down business risk.

Manisha has advised corporate boards, executives and technical leaders in establishing comprehensive programs for managing and maturing their privacy, cybersecurity, data protection and risk & compliance functions. She has served clients in various industries with a specialization in banking, technology and manufacturing with an emphasis on privacy and security strategy and compliance.

Major Projects

  • Led and established global privacy programs for multiple financial services and technology clients with an emphasis on building sound governance structures, establishing global strategy and building sustainable execution programs. Implemented risk-based approach focusing on strategic initiatives and most critical data assets. Experience with regulations & frameworks include but are not limited to the following: CCPA, GDPR, GLBA, HIPAA, PIPEDA, POPI, NIST PF, GAPP.
  • Led a global cyber transformation effort with budget of over $35M focused on executing over a broad range of strategic priorities including GDPR compliance: Advised the CISO and leadership team on making secure business decisions – serving as a subject matter expert, evaluating and advising on future business decisions to ensure that key business priorities are being met; developed Board level communications for the CISO on a quarterly basis to showcase the health of cybersecurity and privacy; developed a long-term strategy inclusive of detailed cybersecurity assessment results and strategic priorities encompassing a budget of over $80M including 12+ subsidiaries across 100+ countries. Created a targeted plan for mergers and acquisitions with a view of differing global laws and regulations.
  • Developed and implemented the information security and data protection programs for multiple Fortune 100 financial services, insurance, and healthcare organizations. Complimented numerous organization’s information security practices with strategic guidance and unsurpassed service offerings, thus providing organizations with the capability to self-manage all aspects of their security practices – policy & governance, monitoring, assessment & audit, and security operations.

Areas of Expertise

  • Data Privacy
  • Cyber Security
  • Data Protection
  • Cyber/Privacy Transformation
  • Risk & Compliance

Industry Expertise

  • Financial Services
  • Technology
  • Healthcare
  • Manufacturing


  • MBA – Operations Mgmt.
  • BA – Marketing & MIS

Professional Memberships and Certifications

  • CIPP
  • CISA
  • PCI-QSA (retired)