Noah Kessler is a Managing Director with over 15 years of experience providing management consulting, technology risk, regulatory, and security controls’ services to cloud service providers, SaaS, Fin-Tech, Ad-Tech, Media, and Streaming companies. His experience includes serving companies ranging in size from high growth organizations to Fortune 50 businesses. Noah’s professional experiences include consulting with management teams on IT regulatory compliance matters, 1st/2nd line IT control transformations, customer audit program transformation, public company transformation, and internal audit outsourced arrangements working with organizations, both domestic and international.
Noah is the East Region Lead for the Technology, Media and Telecommunications (TMT) Industry.
Prior to joining Protiviti, Noah lead audit reports on controls at service organizations related to Security, Availability, Processing Integrity, Confidentiality, Privacy, and financial reporting.
Noah has assisted the largest cloud service provider in the world to build out their global regulatory affairs function and acted as a key liaison with the U.S. federal banking agencies. Noah has advised the client with FFIEC IT Examination Handbook industry generally accepted practices, technology governance documentation reviews, compliance with Technology Service Provider (TSP) guidelines, policies and alignment with regulatory expectations, mock interviews with management (e.g., security and technology management), actions to successfully remediate regulatory concerns, assistance with presentation of remediation efforts, and other advice, as requested, related to regulatory efforts.
Noah has led a global Fin-Tech company in the Financial Services Industry with an OCC Consent Order and multiple MRA/MRIAs in place. The following activities led to the regulatory consent order being lifted and their internal audit department and capabilities were transformed from start-up to a well-respected part of the organization. Activities included: establishment of an internal audit department, codification of internal audit policies and procedures, performing IT audit risk assessments, defining IT risk/audit universe, preparing annual IT audit plans, developing work-programs and test procedures, and managing execution of multiple global IT audits.
Areas of Expertise
- IT Regulatory Compliance
- IT Risk and Controls
- IT SOX
- IT Audit
- Public Company Transformation
- Customer Audit Programs
- Service Organization Control (SOC) Reporting
- Cloud Service Providers
- Ad Tech
- Arizona State University, W.P. Carey School of Business
Professional Memberships and Certifications
- FinTech Advisory Member for the Center for Financial Professionals
- Certified Information Systems Auditor (CISA)
- Certified Risk Management Assurance (CRMA)