The questions provided in this tool can help organizations manage their security and privacy concerns specific to identi...

This sample work program provides general steps organizations should follow when performing a social engineering audit.

This sample audit program provides general steps organizations can use to perform an audit of an organization's voice ov...

This sample policy provides an overview of procedures organizations should perform during the facility access controls p...

Organizations have many questions about the General Data Protection Regulation (GDPR), and in response, Protiviti has de...

This audit report focuses on a project baselining an organization’s information security practices, with the purpose of ...

This paper discusses five common identity and access management (IAM) pitfalls organizations run into today: lack of an ...

Protiviti recommends a simple identity access management (IAM) prioritization model based on risk, impact and friction. ...

Identity and access management (IAM) has become a critical area of focus in security discussions within all organization...

This sample audit report presents the results of an application access audit performed within a company’s IT environment...

This memo focuses on IT SOX readiness procedures for an application, testing change management, computer operations and ...

This memo outlines minimum IT controls around user access, change control, backup, privacy, licenses and document retent...