Michael Porier

Managing Director

Michael Porier is a Managing Director in the Houston office and is one of the founding members of Protiviti since 2002.  Michael is the Lead for the local Cybersecurity Practice, National Lead for the Government Industry Cybersecurity Program, and is one of firms Subject Matter Experts for Cyber Resilience and Business Continuity solutions, overseeing related assessments and remediation projects for clients across the globe.  He specializes in executing and managing all types of Information Technology risk consulting engagements, evaluating the risks and controls related to managing a company’s enterprise-wide technical processes, performing detail security assessments, and implementing technical and operational solutions. 

On these topics, he has presented at numerous conferences, published various articles and blogs, and has been interviewed by industry periodicals and local newspapers.

Major Projects

  • Michael has performed detailed technology security audits, ISO 27001/27002 maturity assessment, and business continuity projects for multiple Oil & Gas companies evaluating controls related to various aspects of the organization’s technical infrastructure.  These projects consisted of an analysis of the existing control structure, reviewed for vulnerabilities, and assisted in the implementation of remediation solutions.  Security evaluations consisted of internal and external IT vulnerability assessment, privacy reviews, SCADA assessments, Active Directory evaluations, and Internet application security assessments.
  • Worked with numerous organizations to assess their Cyber Resilience risks to design enhanced processes to mitigate risks, provide greater visibility to management of their risk profile, and implement detection, monitoring and response procedures to minimize risks of cyber breaches, ransomware and related threats.
  • Led the implementation of global Business Continuity and Operational Resilience programs consisting of Business Impact Analysis’, Crisis Management Plans, Business Resumption Plans, Incident Response, IT Disaster Recovery, and overall governance of corporate continuity programs.
  • Michael worked with a large governmental agency to assist them in implementing security controls and applications to comply with PCI standards for secure credit card processing.  Additionally performed privacy review, implemented new change control procedures, and provided continued risk management consulting regarding their major initiatives and projects.
  • Oversaw major business continuity projects in the Middle East for clients in energy, financial services, and manufacturing.  These projects involved multi-disciplinary teams to ensure high quality technical solutions were implemented for recovering clients’ critical business processes and supporting technologies.

Areas of Expertise

  • Cyber Resilience
  • Cybersecurity & Privacy
  • Business Continuity
  • Operational Technology Security
  • Election Support

Industry Experience

  • Government
  • Financial
  • Healthcare
  • Energy
  • Services


  • B.S. Management Information Systems, University of Houston

Professional Memberships & Certifications

  • Certified Information Systems Security Professional (CISSP)
  • Certified Information Security Manager (CISM)
  • Certified Information Systems Auditor (CISA)
  • Certified Business Continuity Professional (CBCP)
  • Qualified Security Assessor (PCI-QSA)
  • PCI Professional (PCIP)