Technology Audit Services Protect and enhance value through data and technology We help organizations understand their key technology risks and how well they are mitigating and controlling those risks. Our team has deep expertize in recognized frameworks (COBIT, NIST, ISO, ITIL, FFIEC, CMMC etc.) and apply best practices from working with many of the world’s leading audit organizations.Our technology auditors and risk practitioners take a risk-minded and business-objective focused approach and are involved in assessing and advising on virtually every aspect of the way an organization uses (or should be using) technology to protect and enhance enterprise value. Our Technology Audit Services Pro Briefcase Cybersecurity Security program and governance audit, assessments against frameworks, security risk assessments and control testing programs, ransomware preparedness, incident response, technical assessments (e.g., penetration testing, threat hunting), privileged access reviews, and system and device (e.g., IoT) testing. Pro Building office Cloud Cloud strategy audit and governance, security scans and assessments, assessments of cloud migration plans, controls over information access, and compliance with legal and regulatory mandates, effective implementation of the shared responsibility model, and assessment using the Well Architected Framework. Pro Document Consent Data Governance & Privacy Assessments of data management and data governance, data quality assessments, data privacy program reviews, data loss prevention reviews, and assessments against regulatory requirements. Pro Document Files Project Risk Advisory Add an independent risk and controls audit lens to key enterprise projects for management, the audit committee, and applicable external compliance / regulatory entities. We partner throughout the project lifecycle. Pro Document Stack Enterprise Applications Assessments of configuration and application controls, integrity of reporting, security models, sensitive access and segregation of duties, and fit-for-purpose. We use leading commercial, as well as proprietary technology solutions. Pro Legal Briefcase Technology Resilience Assess operational resilience in the context of your use of technology and data, including disaster recovery and crisis response plans, broader business resumption planning, technology infrastructure and architecture assessments, and assessments of overall technology strategy, structure and delivery capabilities. Our Approach Embrace an integrated and collaborative approach with IT management We are experts in the identification and assessment of technology risks and controls. Our technology audit framework embraces an integrated and collaborative approach with IT management that reflects the next generation of internal auditing. We evaluate the governance and controls supporting an organization’s priorities, infrastructure, and delivery approach. Embrace an integrated and collaborative approach with IT management Leadership Angelo Poulikakos Angelo is a Managing Director and global leader of Protiviti’s Technology Audit & Advisory practice. His specific areas of concentration include technology risk management, cybersecurity, IT compliance, internal audit, and automation. Angelo has over 18 years of ... Learn More Key Partners FLASH REPORT The American Privacy Rights Act of 2024: Could this framework become the data privacy panacea? On April 8, 2024, U.S. Representative Cathy McMorris Rodgers (R-WA) and U.S. Senator Maria Cantwell (D-WA) announced the American Privacy Rights Act. This act aims to establish a comprehensive set of rules that govern the usage of citizens' data. The... BLOG New SEC Cybersecurity Disclosure Rules: Key Takeaways From Companies’ Responses While the ink is still drying on many 2023 Form 10-Ks, Protiviti has reviewed a subset of the filings to gauge how firms are responding to the U.S. Securities and Exchange Commission’s (SEC’s) amended Cybersecurity Disclosure Rule adopted in July... WHITEPAPER Enabling Enterprise AI Adoption Through Next-Generation Governance Artificial intelligence (AI) has become increasingly important in the enterprise, thanks in part to the rise of generative AI (GenAI). While not a new technology or concept, AI (including machine learning) holds tremendous promise to transform... SURVEY 2024 Top Risks for Chief Audit Executives CAEs see a riskier near- and long-term environment than do most of their colleagues in the executive suite. Of all C-level respondents to our latest Top Risks Survey, internal audit leaders ascribe the highest-magnitude ratings to risks they expect... SURVEY Navigating a Technology Risk-Filled Horizon Protiviti partnered with The Institute of Internal Auditors to conduct its 11th annual Global Technology Audit Risks Survey in the second and third quarters of 2023.The objective of this survey is to explore the top technology risks organizations... WHITEPAPER Success With Generative AI Requires Balancing Risk With Reward When ChatGPT launched in November 2022, it took just two months to garner a record 100 million users and capture broad market attention. Business leaders are eager to realize the enormous potential that ChatGPT as well as other generative AI models... Button Button