Roxanne Miller

Associate Director

Roxanne is an Associate Director in Protiviti’s Risk and Compliance practice working with technology and financial services organizations on compliance and operational risk management. Roxanne has experience in the United States and Asia Pacific regions with remediation and project management of complex regulatory issues, compliance program build and scale, compliance risk assessment, issue management, and internal audit.

Major Projects

  • Project managed the first year of an FTC consent order as the Independent Assessment for a large social media company. The order requires an independent assessment of the effectiveness of a mandated “comprehensive privacy program.”
  • Developed a Global Compliance Program at an Online Hospitality Booking Platform. Activities included identification of appliable regulatory requirements, identification and documentation of control activities and compliance owners, and execution of preliminary compliance risk assessment. Identified areas of highest risk and opportunities to enhance compliance reporting and monitoring.
  • Assisted in a Global Enterprise Risk and Compliance Assessment for one of the largest online payment processors by documenting processes performed in the Hong Kong and Singapore markets and mapping the applicable regulatory obligations to these processes. Identified and documented controls to determine potential regulatory compliance gaps. Frequently performed interviews of and worked with stakeholders to gather and validate information.
  • Assisted with the strategic design and build-out of a new centralized Business Control Function within a large Fintech company; responsibilities included formation of the roles and responsibilities split between the three lines of defense, leading communication efforts across all business units and global senior leadership, and documentation and analysis of open issues.
  • Performed mapping of detailed regulatory requirements for one of the largest credit card servicers by providing detailed assessments of US regulatory applicability to bank processes and performing reviews of controls to determine potential regulatory compliance gaps. Wrote detailed training modules used to teach the client’s compliance officers how to perform eachstep of a compliance risk assessment.
  • Executed Operational Risk and Control Assessments for a Fortune 500 US Bank and Insurance Company within various business areas in their Innovation, AML, Accounting, Enterprise Strategy & Marketing departments. Activities included the review of process maps, policies, and procedures; facilitation of process and control walkthroughs with key stakeholders; assessment of control design and effectiveness through control testing; and assessment of inherent and residual risk.
  • Managed portfolio of 60+ Credit Card remediation issues from issue identification to remediation execution at a large Bank, while also developing and implementing program-level process improvements for the Remediation program. Regularly presented findings to Bank Senior Leadership.
  • Performed a foreign correspondent account review at a major US Credit Card Servicer by carrying out an assessment of processes, systems, and data to determine whether the client-maintained relationships with entities that could be considered Foreign Correspondent Accounts.

Areas of Expertise

  • Regulatory Compliance
  • Operational Risk Management
  • Privacy
  • Enterprise Risk Management
  • Issue Management
  • Internal Audit

Industry Expertise

  • Technology
  • Fintech
  • Credit Card Servicers
  • Banking


  • Finance and Marketing, University of Illinois at Urbana Champaign
  • Certified Anti-Money Laundering Specialist (CAMS)