Noah Kessler

Managing Director

Noah is a Managing Director in the IT Internal Audit practice of Protiviti’s New York Metro Office and serves as Protiviti’s NY Market Technology Sector Leader. Noah focuses on leading technology audits, IT regulatory compliance, IT SOX, and outsourced arrangements working with organizations, both domestic and international, across the technology sector. Prior to joining Protiviti, Noah managed Service Organization Control (“SOC”) audits over processes related to financial reporting and the Trust Services Criteria.

Noah leads a portfolio of outsourced and co-sourced IT SOX arrangements for domestic and international companies domiciled in the north east region.

Most recently, Noah has led the largest cloud service provider in the world build out their global regulatory affairs function and acting as a key liaison with the US federal banking agencies. Noah has advised the client with FFIEC IT Examination Handbook industry generally accepted practices, technology governance documentation reviews, compliance with Technology Service Provider (TSP) guidelines, policies and alignment with regulatory expectations, mock interviews with management (e.g., security and technology management), actions to successfully remediate regulatory concerns, assistance with presentation of remediation efforts, and other advice as requested related to regulatory efforts.

Noah has also led a global Fin-Tech company in the Financial Services Industry with an OCC Consent Order and multiple MRA/MRIAs in place through establishment of an Internal Audit department, codification of internal audit policies and procedures, performing IT audit risk assessments, defining IT risk/audit universe, preparing annual IT audit plans, developing work-programs and test procedures, and managing execution of multiple global IT audits. Through these activities, the regulatory consent order was lifted and their internal audit department and capabilities were transformed from start-up to a well-respected part of the organization.

Noah is a thought leader in the firm for our IT Audit practice and has authored white papers such as “On the Road to SOC 2 Readiness – What Service Organizations Need to Know” and “Cloud Oversight in Financial Services: Understanding Responsibility and Control”.  Additionally, Noah remains well versed in the FFIEC IT examination handbooks, cloud security alliance, cybersecurity frameworks, and a variety of regulatory/external audit requirements that have implications on the IT Audit discipline.

Noah is a FinTech Advisory Member for the Center for Financial Professionals.

Technical areas include: cloud computing (SaaS/IaaS/PaaS), agile development, cyber security, application/infrastructure development, change management, data center operations, security administration, disaster recovery, data classification, logging/monitoring, patch management, data loss prevention, end of life, network and various platforms.

Areas of Expertise

  • Sarbanes-Oxley / Internal Controls over Financial Reporting
  • SOC 1 & SOC 2
  • IT Audit
  • Cyber Security
  • Technology Regulatory Compliance
  • Technology Governance
  • Technology Risk Management
  • Project Management

Industry Expertise

  • High Tech
  • Cloud Service Providers
  • Fin-Tech
  • Software
  • Consumer Products


  • Arizona State University, W.P. Carey School of Business

Professional Memberships and Certifications

  • Certified Information Systems Auditor (CISA)
  • Certified Risk Management Assurance (CRMA)