• Search in Protiviti.com

Insight Search

Sort by:

  • Whitepaper

    November 18, 2025
    Setting the 2026 Audit Committee Agenda
    As organisations grapple with rapid technological change, evolving regulations, and increasing risks in areas like AI, cybersecurity, and data privacy, audit committees are being called on to broaden their view of enterprise risk and governance. With oversight responsibilities growing in both scope and complexity, this whitepaper reveals the nine critical priorities that will define effective…

  • In Focus

    April 25, 2025
    Navigating the DOJ final rule on bulk sensitive personal data: What does it mean for your business?
    Multinational organisations must now comply with a sweeping new U.S. Department of Justice rule that restricts the transfer of bulk sensitive personal data to foreign adversaries. The rule, established under Executive Order 14117, went into effect earlier this month and introduces prohibitions and controls on data transactions involving countries of concern such as China, Russia, Iran, North…

  • Client Story

    October 21, 2024
    Enhancing Consent Management with OneTrust
    Protiviti and OneTrust helped a global software and IT solutions provider enhance its consent management processes, ensuring regulatory compliance. 

  • Whitepaper

    April 22, 2021
    CYBER SECURITY - IN GIUGNO PRIMO TEST PER LE IMPRESE STRATEGICHE
    Con l’istituzione del Perimetro di Sicurezza Nazionale Cibernetica (D.L. 105 del 2019), l’Italia ha fatto un deciso passo avanti per assicurare la sicurezza di reti, sistemi informativi e servizi informatici delle organizzazioni (pubbliche e private) essenziali per il Paese.

  • Podcast

    September 22, 2025
    FPS Podcast | CMMC Rule is Out - What Contractors Must Know With DOD Contracts
    On September 10th, 2025 the "CMMC Final Rule" was published in CFR48. After about seven years of starts and stops, determining Level classifications, the number of controls and compliance needed, CMMC certification is now set to be in certain DOD contracts starting November 10th. Cost of compliance has varied greatly, but when dealing with FCI and CUI data, this certification will protect that…

  • Newsletter

    November 6, 2019
    LA SFIDA DELLA QUANTIFICAZIONE DEL RISCHIO CYBER
    Cambiano scenari e modelli, “incursori” e attori della protezione e non sempre l’approccio a silos basato sui controlli (regolamentarie non) e sulla sicurezza operativa riesce a precedere nuovi fenomeni. Se il cyber risk è fra le prime preoccupazioni per le aziende europee (italiane comprese) come indica il report “Regional Risk for Doing Business 2019” diffuso dal World Economic…

  • Video

    September 3, 2020
    Cyber Risk Quantification FAQs
    Cyber risk quantification (CRQ) uses industry leading and highly vetted probabilistic models to more accurately describe the cyber security and technology-based risks facing an organisation. Tune in to Protiviti's subject matter experts answer 15 frequently asked questions about CRQ.

  • Podcast Transcript

    January 5, 2021
    Transcript - Building an Effective Industrial Control Systems Security Programme
    In this episode, Kevin Donahue, a senior director with Protiviti speaks with Protiviti's associate director Justin Turner and manager Derek Dunkel-JahanTigh about security for industrial control systems, or operational technology. 

  • Whitepaper

    July 13, 2021
    How to implement an effective identity management strategy
    Identity management doesn’t happen overnight; there’s no “Easy” button to press, or magic snap-of-the-fingers instant fix. In fact, identity management has transformed into something far more complex than password authentication and simple security measures. It’s important to understand that jumping into a new technology instantaneously isn’t necessarily the right first step to ensuring a…

  • Whitepaper

    June 1, 2022
    How can an enterprise use access management to establish a Zero Trust environment?
    A hybrid RBAC, ABAC and PBAC framework is the best practice approach A strong access management programme is foundational to establishing a Zero Trust environment by using contextual information to continuously validate that users are who they say they are and by restricting user access to necessary resources only. Within the Zero Trust framework, identity governance and risk-based…
Loading...