KnowledgeLeader Home Page

New This Week

New Regulatory Updates

The People Side of COVID-19: The Ultimate Test of Operational Resilience?

This Flash Report highlights key points on how companies can emerge from the COVID-19 crisis as they apply pandemic protocols and put their response plans into action.

Lessons in Personal Accountability

This Flash Report discusses global supervisory practices related to personal accountability in the financial services industry and the key takeaways for boards and management of U.S. financial institutions.

It’s Time to Take a Critical Look at the Security of Your IoT Devices . . . Now!

This Flash Report highlights the current state of IoT and user devices and provides six key recommended measures organizations can take for managing unique risks.

New Newsletter

Operational Resiliency and the Role of the Board

This issue of Board Perspectives covers some of the important points and key takeaways discussed during Protiviti’s meeting with a group of active directors at a recent NACD event.

Benchmarking Tool

Develop Public Relations Program Key Performance Indicators (KPIs)

This benchmarking tool outlines key performance indicators for developing a well-crafted public relations campaign that generates not just coverage and visibility, but fosters meaningful relationships with customers, clients, business partners, employees and public constituencies.


Emergency Executive Committee Charter

This charter establishes an EEC and outlines its objective, authority, reporting, and pre-event and post-event responsibilities.

Checklists and Questionnaires

IT Application Security Questionnaire

This sample questionnaire is designed to monitor and enhance an organization's IT application security process.

IT Disaster Recovery Plan Assessment Checklist

This tool provides questions to consider for IT disaster recovery plan assessment. The focus areas include project initiation and management, risk assessment, and business impact analysis.


Incident Management Capability Maturity Model (CMM)

This capability maturity model can be used to measure the maturity of an organization’s incident management process and to assist its progress from the initial/ad-hoc state toward the optimized state.

April 6, 2020

Policies and Procedures

Crisis Management and Emergency Operations Policy

This sample policy provides an overview of procedures organizations should take during the crisis management and emergency operations process.

Data Management: Data Backup and Storage Policy

This sample policy specifies the procedures for backing up data and facilitating the recovery of important data in the event of accidental or intentional corruption, loss or destruction.

Emergency Policies and Procedures Manual

This is a sample of emergency policies and procedures for a business office. It includes procedures for safety teams, fire prevention/drills, disabled assistance, earthquakes, power outages, workplace violence and bomb threats.

Work Program

Disaster Recovery Planning Audit Work Program

This sample audit program provides general steps organizations should follow when reviewing disaster recovery planning.

Featured Links

In the Face of the Coronavirus, Internal Auditors Must Do More Than Don Masks

This article shares the key actions internal auditors should take when supporting their organizations, which include understanding and assessing the full range of immediate risks.

Respond, Manage and Prepare for the Impact of Coronavirus

This complimentary webinar covers 10 steps for pandemic preparedness, crisis management solutions and how technology plays a critical role for business success in this new environment.

Coronavirus: Life and Death at the Speed of Risk

This article explains how all organizations and internal auditors can prepare for COVID-19, including updating and testing crisis management plans and considering a reasoned reordering of their audit plans.

KnowledgeLeader Blog

Risk Oversight: How to be Aware of Emerging Business Risks

This blog post summarizes tips audit committees can use for identifying and evaluating an organization’s risk profile.

Featured Event
Featured Event

Protiviti's Enterprise Resilience CPE Webinar Series

We're facing an unprecedented challenge – but we aren't facing it alone. These CPE webinars provide you with an opportunity to prioritize your conversations, gain confidence in your own plans and increase your organization's resilience. Register for the upcoming webinars in this series.   Read More...

Upcoming Webinars
Keeping Your Remote Workforce Safe and Secure

April 7, 9:00 AM - 10:00 AM Pacific

Register Now

Minimize Threats, Modify Security and Optimize Safety

April 9, 9:00 AM - 10:00 AM Pacific

Register Now

Applying Digital Tools and Process Analytics to Drive Insight During COVID-19 and Recovery

April 14, 8:00 AM - 9:00 AM Pacific

Register Now