Protiviti Contact

Protiviti Contact

Natalie Fedyuk

Managing Director

Professional Experience

Natalie Fedyuk is a Managing Director within Protiviti’s Technology Consulting Practice. She is a member of Protiviti’s Global Cybersecurity and Privacy team. Natalie is a pragmatic, results oriented, and dynamic leader with over 20 years of diversified experience in cybersecurity and privacy, with focus on CISO program transformation and optimization, third-party security risk management, and cloud security transformation. Natalie leads the SWIFT Customer Security Programme service and most recently, partnered with a major financial sector trade association to design an Operational Resilience and global response simulation exercise.

Major Projects

  • Advised on regulatory and industry changes impacting cybersecurity operations.
  • Orchestrated digital transformation and modernization of cybersecurity organizations for numerous Fortune 500 clients.
  • Oversaw cybersecurity posture analysis in support of M&A due diligence and spearheaded M&A integration activities for Life Science clients.
  • Designed and implemented SWIFT Customer Security Programme and framework adoption.
  • Led global financial services and life science clients in the design, content development, and implementation of Third-Party Risk Management programs with focus on IT risk, cybersecurity, and privacy.
  • Third Party Security Risk Management service and innovation leader.
  • Led regulatory response and remediation of Third-Party Risk Management program for a global financial services client. Responsible for preparing regulatory response, remediation schedule, and execution of the multi-year implementation plan.
  • Designed global “TPRM as a Service” managed service and executed outsourcing of the TPRM program monitoring capabilities.
  • Led global teams in conducting various TPRM, application, compliance, and risk assessments.
  • Implemented Cyber GRC programs by designing operating models, content, and automation through leading GRC platforms.
  • Led deployments of Endpoint Detection and Response platforms for ransomware protection, forensic analysis, and proactive threat hunting.
  • Oversaw IT risk assessments, including identification, cataloging, and quantification of risks; designed controls and processes to reduce risks of unauthorized access or exposure to acceptable levels.

Areas of Expertise

  • Cybersecurity Strategy
  • Operational Resilience
  • Cloud Security
  • Regulatory Compliance
  • Third Party Risk Management
  • IT Risk Management
  • Privacy
  • Data Loss Prevention
  • Data Governance

Industry Expertise

  • Financial Services (Banking & Insurance)
  • Life Sciences and Healthcare
  • Hospitality, Leisure and Travel
  • Retail

Education

  • B.S. Business Management, MIS & Finance. Babson College, 2003

Professional Memberships and Certifications

  • CISA
  • CISM
  • CISSP