• Search in Protiviti.com

Cybersecurity Consulting

Securing your future with trust and confidence

US Solutions

From the speed of innovation, digital transformation, and economic expectations to evolving cyber threats, the talent gap, and a dynamic regulatory landscape, technology leaders are expected to effectively respond to and manage these competing priorities.

To grow securely while reducing risk, your cybersecurity posture needs to adapt and respond to your business changing. As technology rapidly evolves and digital adoption accelerates, Protiviti's cybersecurity and privacy team turns risk into an advantage – protecting every layer of an organization to unlock new opportunities, securely.

Our strategic and technical subject matter experts fully understand your cybersecurity needs. We set out to assess, develop, implement, and manage end-to-end next-generation solutions tailored to your specific needs. We share your commitment to protecting your data and optimizing your business and cyber resiliency.

Visit and subscribe to our Tech Insights blog.

US Solutions

Our cybersecurity consulting services

Pro Briefcase

Cloud Security

We help you understand, address, and actively manage the risks you face to successfully operate your business in a secure cloud.

 
Pro Building office

Data Protection

We help preserve your business value by protecting sensitive data while assessing and maintaining compliance with regulatory and contractual requirements.

 
Pro Document Consent

Attack and Penetration

We help protect your critical assets and data by identifying vulnerabilities and providing actionable remediation guidance. Applications, infrastructure, databases, IoT and mobile apps, whether on-premise or in the cloud, are safer with Protiviti.

 
Pro Document Files

Digital Identity

We tackle identity and privileged access management from a risk management perspective, giving you empowered and trusted users who can safely connect to sensitive resources, no matter where they are.

 
Pro Document Stack

Security Program and Strategy

We help you understand and manage the evolving cybersecurity and privacy risks you face, determine your readiness to address them, tailor your cybersecurity governance, and communicate effectively with stakeholders.

 
Pro Legal Briefcase

Cyber Risk Quantification

By leveraging quantitative modeling, we empower you to fully understand the risks you are facing in ways that make sense for your business.

 
Pro Workflow Flowchart

Managed Security Services

Protiviti helps you mitigate risk and optimize processes while simultaneously sustaining business operations. We do this by applying scalable, contractual services delivered by highly skilled security resources.

 
Pro Tools Gear

Cyber Defense and Cyber Resilience

Protiviti helps you prepare for, respond to, and recover from security incidents. When incidents happen, a trusted partner like Protiviti guides you through the process to help avoid costly pitfalls and recover as quickly as possible.

 
A leader’s playbook to Cybersecurity

A leader’s playbook to cybersecurity

We help leaders think differently.

To succeed in today’s digital world, leaders need to be ahead of the trends. It’s about being relevant, innovative, and ambitious.

When it comes to security, this business mindset mustn’t waver. It is through an innovative and resilient lens that companies can effectively adapt, adopt, and secure their digital framework.

At Protiviti, we help you transform your business — securely — one step at a time. We focus on achieving your goals to manage security strategy, enable compliance and trust, protect your data and business assets, transform and optimize your business, architect and sustain your security platforms, and enable your security resilience plans.

By applying our three core principles — “Advise. Implement. Manage.” — we provide the industry-relevant cybersecurity consulting solutions needed to satisfy your needs.

Attention to detail, deep technical skills, our integrated approach, and a commitment to excellence set Protiviti apart.

A leader’s playbook to Cybersecurity

Leadership

Kim Bozella
Kim Bozzella
Kim is Protiviti’s Global Leader of Technology Consulting. She is responsible for the strategy, offerings, consulting delivery and external alliance partnerships for all of Protiviti's technology capabilities, including Security & Privacy, Business Application ...
Learn More
Sameer Ansari
Sameer Ansari
Sameer is a Managing Director and the practice lead for the Data Privacy team. He has over 20 years of experience across several industries related to designing and advising privacy and data protection programs. He has also advised large global clients on cybersecurity ...
Learn More
Shinoy George
Shinoy George
Shinoy George is a Managing Director and the Security Operations and Managed Security Services (MSS) Practice Leader within Protiviti. He has over 20 years of technology consulting experience delivering cyber defense solutions, security options, forensics, and ...
Learn More
Andrew Retrum
Andrew Retrum
Andrew Retrum is a Managing Director and business-oriented leader within Protiviti’s Technology Consulting Practice. He currently has dual leadership roles, for both the Global Financial Services Security Practice and the US Security Program & Strategy Practice. ...
Learn More
Krissy Safi
Krissy Safi
Krissy is a Managing Director and the practice lead for the Attack and Penetration team. Creator, builder, and leader of global businesses and highly effective teams, Krissy has nearly two decades of information security experience working with Fortune 500 companies and ...
Learn More
John Stevenson
John Stevenson
John is a Managing Director and leads the Cloud Security practice, focusing on healthcare, retail, consumer goods and services, financial services, and payment processing. He brings more than 25 years of technology experience with 13+ years in cloud security and privacy ...
Learn More
David Taylor
David Taylor
David is a Managing Director based in Protiviti’s Orlando office. He has more than 20 years of experience in information security and IT Audit. He is a former federal agent and Computer Crime Investigator (CCI) for NASA’s Inspector General and for the United States Air ...
Learn More
Chip Wolford
Chip Wolford
Chip is a Managing Director in Protiviti’s Technology Consulting practice focusing on Data Security & Privacy. He presently leads Protiviti’s Data Security practice and focuses on Payment Card Industry and Healthcare Information Security as well as supporting ...
Learn More

Key partners

We partner closely with leading specialists across the cybersecurity consulting and privacy ecosystems, ensuring our clients receive the best solutions to meet their needs.

Additionally, we provide a host of solutions in the advisory, implementation and managed services realms -- tailored to your organization's unique needs and industry to envision value, realize value, and protect value.

Some of our top partners include:

ciso next

CISO Next

CISO Next connects CISOs and security thought leaders to explore and shape how their role will evolve in the current and future business landscape. Stay informed on latest trends, network with fellow CISOs, and build solutions for the future.
Get Involved

BLOG

Blog

Metrics’ Role in Cyber Transformation

We’ve all heard the saying, “what gets measured gets done,” meaning that regular measurement and reporting helps to keep organizations focused on the information that matters. But with so many data points available to measure security, it is...
Read More

BLOG

Blog

Cybersecurity Risk Assessments vs. Gap Assessments: Why Both Matter

As cybersecurity incidents continue to make headlines, whether involving the breach of sensitive information or the halting of an enterprise’s operations, cybersecurity risks remain top of mind for many organizations. To this end, organizations are...
Read More

BLOG

Blog

Enhancing Cyber Capabilities Using a Threat-Driven Strategy

Senior leaders focused on cybersecurity recognize there is considerable guidance, best practices, frameworks, regulations and varied opinions on how programs should design defensive capabilities. In addition, depending on the day, the various...
Read More

BLOG

Blog

API Security: Key to Interoperability or Key to an Organization?

Most applications built today leverage Application Programming Interfaces (APIs), code that makes it possible for digital devices, applications and servers to communicate and share data. This code, or collection of communication protocols and...
Read More

BLOG

Blog

Creating a Resilient Cybersecurity Strategy, Part 3: Role of the Board

This is the last of a three-part series about developing a cybersecurity governance lifecycle that provides coverage, balance, effectiveness, efficiency and assurance. This series explores cybersecurity governance in the context of enterprise...
Read More

BLOG

Blog

Creating a Resilient Cybersecurity Strategy, Part 2: The Role of Senior Leaders in Governance

This is part two of a three-part series about developing a cybersecurity governance lifecycle that provides coverage, balance, effectiveness, efficiency and assurance. Because clear boundaries between governance roles are so important, this series...
Read More

BLOG

Blog

Muddy Footprints – Every Contact Leaves a Trace

Imagine a murder scene: a broken window, muddy footprints, a knife and a body. Now imagine a computer incident: Hundreds of encrypted files. A ransom text file. A remote connection from an external Internet Protocol (IP) address. How does...
Read More

BLOG

Blog

A House Divided: Key Differences in Cybersecurity Implementation for IT and OT

Anyone who has spent a significant amount of time in any U.S. state where college football is popular, has likely seen a “house divided” bumper sticker or license plate cover, with contrasting university logos. Many of us (and our friends and...
Read More

Protiviti Global Chocolatier Adopts Privacy Technology

Global Chocolatier Adopts Privacy Technology to Prevent Data Exposure

Data privacy has become a strategic priority as companies adapt to comply with rapidly proliferating data privacy laws. Recent years have seen the adoption of the European Union’s General Data Protection Regulation (GDPR), the more recent California Consumer Protection Act (CCPA), and similar regulations.
Read More
Scott Laliberte and Krissy Safi on privacy, security and the connected smart city

Scott Laliberte and Krissy Safi on privacy, security and the connected smart city

Worst-case scenario, best-case-scenario—what exactly are we in for when the Internet of Things takes over our cities’ traffic, power grid and other infrastructure on a mass scale? Can the enormous possibilities outweigh the risks? Two Protiviti experts—Scott Laliberte, Global Leader of Protiviti’s Emerging Technology Group, and Krissy Safi, Managing Director and Global Practice Lead for Attack &...
Read More
Loading...