Professional Documents
Culture Documents
1000 and Global 500 companies. We also work with smaller, growing companies, including those looking to go
public, as well as with government agencies.
Protiviti is a wholly owned subsidiary of Robert Half International Inc. (NYSE: RHI). Founded in 1948, Robert Half International is a
member of the S&P 500 index.
PROVEN DEL I VERY
How We Help Companies Succeed
Protiviti IT Audit professionals assist companies world-
wide in assessing compliance with internal IT policies and
procedures as well as legal and regulatory requirements
related to social media. We work with our clients to perform
a broad scope of social media-related internal audits, includ-
ing controls and supporting processes in the following areas:
Policies
Management
Data privacy and security
Regulatory tracking
Monitoring and alerts
Training and awareness
Vendor management
Example
A nancial services provider selected Protiviti to evaluate
its social media policy and presence. We worked with our
client to:
Compare its policy to best practices and recommend
enhancements.
Search for sensitive information that may harm the
clients reputation or disclose details about its IT
infrastructure.
Search public databases, forums and discussion boards
to identify client employees who may have posted
inappropriate information about the company.
Through the review, our client was able to update its social
media policy to comply with new regulatory requirements
and gain comfort that inappropriate content had not been
posted by employees.
Contacts
David Brand
+1.312.476.6401
david.brand@protiviti.com
2011 Protiviti Inc. An Equal Opportunity Employer. PRO-1111-107118
Protiviti is not licensed or registered as a public accounting rm and does
not issue opinions on nancial statements or offer attestation services.
audit, including IT infrastructure components such as data-
bases, operating systems, networks and data centers. To
determine what aspects of social media should be assessed
and monitored and to identify potential risk areas, IT audi-
tors should ask the following questions about the organi-
zations current approach to social media:
How is social media being used by the business, and by
which employees?
Does our organization have a formal social media strategy?
Do our current policies support our approach to social
media and help to protect the enterprise?
How are we educating our employees about social media-
related risks?
What measures are in place to protect our data?
What data might be leaving our organization via social
media channels?
Is our organization in compliance with applicable privacy
laws and regulations?
By working with management and other key stakeholders
in the organization to answer these types of questions, IT
auditors can verify that appropriate policies and controls
are in place around the use of social media by the business
and its employees. They also can more condently focus
resources toward monitoring social media-related risks that
the enterprise should be most concerned about based on
its compliance requirements and business objectives.
James Armetta
+1.212.399.8606
james.armetta@protiviti.com
Anthony Samer
+1.415.402.3627
anthony.samer@protiviti.com