Programma e Strategia di Sicurezza Understand and manage evolving cyber threats with confidence. Protiviti aiuta le organizzazioni a valutare la propria cybersecurity e i rischi di data protection, fornendo soluzioni innovative per ridurre l’esposizione. Definiamo per i nostri clienti le migliori strategie, le azioni da adottare e le architetture tecnologiche di protezione.Protiviti supporta i clienti nella valutazione dei rischi cyber e fornisce una roadmap che massimizzi il ritorno degli investimenti in cybersecurity, con l’obiettivo di allinearli agli obiettivi di business.Aiutiamo i nostri clienti ad adottare un approccio olistico ed integrato tra business e tecnologia rispetto alla specifica risk posture e utilizziamo i framework di cybersecurity riconosciuti dal settore per valutare l’efficacia dei presidi tecnologici e organizzativi. Better understand and manage your organisation's cyber risks Our Cybersecurity Strategy Services Pro Briefcase Assess Cybersecurity Risks Understand and prioritize cyber risks based on your unique risk landscape and cybersecurity maturity. Pro Building office Assess Capabilities Leverage industry frameworks and our depth of expertise to understand current capabilities and create a roadmap towards the target security posture. Pro Document Consent Program Benchmarking, Strategy, and Governance Assess your organization against industry benchmarks and design a go-forward structure. Pro Document Files Board Communication and Reporting We provide support for meaningful cybersecurity strategy discussions with senior leadership and the board. Pro Document Stack Cyber Program Office Cybersecurity risks are never static. A successful cyber program office adapts accordingly. Our team serves as an on-demand “virtual CISO” providing hands-on support, transparency, and structure to respond to changing demands. Featured insights BLOG 5 Strategic Questions to Guide a Successful Data Security Deployment 5 min read Evolving data security threats, regulatory compliance requirements and data governance needs have organizations increasingly turning to Microsoft Purview. But with such a powerful and expansive platform, the biggest challenge often isn’t how to use... INSIGHTS PAPER Protect Your Cloud Environment With CNAPP 8 min read In 2023, a prominent global technology firm experienced a significant security breach when sensitive production data was inadvertently restored in a development environment. This misconfiguration led to the exposure of credentials and customer data,... PODCAST Podcast | Digital Frontier: Addressing Blind Spots in Corporate Governance and Strategy – with Frank Kurre and Ann Rodriguez 3 min read In this episode, Protiviti Managing Director Frank Kurre is joined by Ann Rodriguez to explore the impact of digital assets on corporate governance and strategic planning. Ann highlights critical areas where technology significantly influences... WHITEPAPER Network and information security directive 2 (NIS2) 17 min read The European Commission has revised the NIS Directive, expanding its scope to include numerous new sectors. This revision aims to enhance cybersecurity across the entire European region by unifying national laws with common minimum requirements. For... VISION Privacy, data protection and cybersecurity in the boardroom with Dr. Gregg Li 1 min read “When I first started this 30 years ago, I thought the more time you spend on innovation, the less time you spend on this data management. So that was a tradeoff. Then I found out that's not true; you can do both.” “We can use AI to really build the... BLOG Integration of SailPoint and PAM: Maturing Privileged Access Security Posture 4 min read Most modern cyberattacks — credential theft, bypassing authentication, impersonation and session hijacking — are tied to identity security. Traditional security perimeters, where protecting the "front door" was sufficient, are no longer effective. ... Previous Article Pagination Next Article Make smart cybersecurity strategy investments World-class security A world-class security organization is nimble, efficient, self-improving, adaptive, and effective. Protiviti helps you maintain your cybersecurity strategy to your specifications and remains aligned with your business objectives. Make smart cybersecurity strategy investments Leading the way on cyber risk quantification As the founding advisory partner to the FAIR Institute, Protiviti provides the FAIR Institute with experience, thought leadership, and sponsorship to promote the adoption and growth of FAIR. Leadership Chip Wolford Chip is a Managing Director in Protiviti’s Technology Consulting practice focusing on Data Security & Privacy. He presently leads Protiviti’s Data Security practice and focuses on Payment Card Industry and Healthcare Information Security as well as supporting ... Learn More Perry Keating Mr. Keating is the Managing Director and President of Protiviti Government Services (Pro Gov) with over 30 years of doing business with the government and the Defense Industrial Base (DIB). His experience gives him unique industry insight into the Public Sector (US ... Learn More Torin Larsen Torin leads Protiviti’s Cybersecurity practice in the Pacific Northwest. He has over 18 years of consulting experience, and has extensive experience working with high tech, retail, telecommunications, and software companies.Major ProjectsActed as a Virtual CISO for a ... Learn More Sameer Ansari Sameer Ansari is a Managing Director and leader of Protiviti’s Security and Privacy Practice. Sameer brings more than 20 years of experience developing and delivering complex privacy solutions to the Financial Industry, and privacy consulting and implementation ... Learn More What is next for CISOs? The CISO Next initiative produces content and events crafted exclusively for CISOs, with CISOs. The resources focus on what CISOs need to succeed. The first step is finding out “What CISO type are you?” Get Involved Case Studies Risk mitigation through cybersecurity strategy and programming Situation: This international, not-for-profit healthcare provider operating over 60 hospitals and 350 clinics in four countries knew its high-priority business demands created issues with information security. Business leaders lost confidence in the organization’s delivery quality and ability to protect its digital assets. Value: A long-standing relationship with Protiviti yielded significant improvements in the client’s cybersecurity capabilities, programme maturity, and risk mitigation. Critical outcomes included a 53% reduction in superfluous active directory (AD) groups and the standardization of AD management tool kits, a reduction in phishing campaign testing click-through and compromise failures from 15% to 7%, and a risk indicator reduction of an average of 80%. Financial services firm gains greater control of global cybersecurity position Situation: The fast-track growth of an international financial services firm through numerous acquisitions led to security challenges. Value: We improved the client’s security posture through standardization of patching and remediation—implemented across the enterprise—gaining real-time status on the environment. We enhanced the visibility of cybersecurity and data privacy risks across key business units. Protiviti helps financial services firm tighten cybersecurity and technology control Situation: A leading corporation in the financial services and insurance industry acquired several companies without conducting robust due diligence, neglecting to identify cyber risks and to strategize seamless integration with the existing IT infrastructure. Value: With enhanced cybersecurity metrics, the client increased its visibility of cybersecurity and data privacy risks to internal business partners for each targeted company acquisition. The client integrated enterprise security policies and standards into the vendor procurement process to mitigate third-party risks. Supporting and documenting cybersecurity strategies for an international bank Situation: An international bank wanted to define and document its three-year cyber security strategy. Value: The bank gained a digital visualization of the control blueprint, giving users a quick snapshot of threat analysis activity and the ability to gauge the necessary actions to further reduce risk.
