1. In today’s increasingly competitive and regulated market, risk managers are faced with a multitude of challenges. They must
manage both operational and strategic risks while tracking compliance against a moving landscape, all while increasing
stakeholder value and meeting corporate objectives. They can approach future investments in risk management initiatives
merely as a means to abide by corporate directives, or they can use these investments as an opportunity to strengthen and
unify their risk culture and align risk-based practices to protect and enhance shareholder value.
Sustainable Risk Management Program
The Governance Portal for Risk Management provides an integrated solution
that enables leading risk practices. The system features risk and control
self-assessment, key indicator management and action plan management,
and also provides integrated loss event and internal audit modules. The
technology facilitates the communication of risk frameworks and directives
from the governing risk committees to the employees throughout the
organization, while enabling a comprehensive risk assessment,
measurement and monitoring process.
The Governance Portal is a market-leading
Governance Risk and Compliance (GRC)
software solution used by hundreds of
clients around the world – providing vis-
ibility and insight needed to manage and
mitigate critical risk and compliance issues
today and in the future.
The Governance Portal helps clients:
• Start quickly
• Execute efficiently
• Create sustainability
• Add value
Protiviti has been positioned as a “Challenger”
by Gartner, Inc. in the September 2013 Magic
Quadrant for Enterprise Governance, Risk
and Compliance Platforms.
“We use the Risk Management module to
administer our Internal Control review. Usage
of the tool enables us to successfully manage our
large recipient base of nearly eight-hundred
individuals and to quickly provide meaningful
consolidated reporting while maintaining
anonymity for our employees. We have done
this for three consecutive years and will
continue to do so in the future.”
– Controls Manager, Global Engineering
Company
Protiviti’s Governance Portal for
Risk Management
Define and Plan
Execute
Report
Monitor and Follow Up
Define Measure
MonitorManage
©2014ProtivitiInc.104213
• Establish a common risk event model
and organizational hierarchy through-
out the integrated framework.
• Map risk objectives, risks and controls
to this framework.
• Incorporate a qualitative and quantita-
tive risk assessment approach by
developing configurable scoring
models and leveraging historical loss
data within a unified risk framework.
• Schedule periodic assignments
and notify personnel of their
responsibilities.
• Establish response strategies, apply
controls, remediate deficiencies and
provide information for management
decision-making through an
integrated reporting suite.
• Use self-assessment techniques to
drive ownership and acceptance of
program responsibilities throughout
the business.
• Analyze assessments results and
monitor key risk indicators (KRI) and
audit findings to provide a compre-
hensive report to risk management.
Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the
highest ratings. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims
all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.

2. All referenced trademarks are the property of their respective owners.
© 2014 Protiviti Inc. An Equal Opportunity Employer M/F/D/V. PRO-0414-104213
Protiviti is not licensed or registered as a public accounting firm and does
not issue opinions on financial statements or offer attestation services.
Improve Your Risk Management Function Today
The system aligns risk assessment with corporate goals through a simple
methodology of identifying and documenting business objectives,
processes, risks and controls. In-depth control analysis helps manage
residual risk levels.
It supports a forward-looking assessment of risk based on multiple inputs,
including risk assessment, loss event analysis, key risk indicators (KRIs) and
control analysis.
Compliance Dashboard
Risk Heat Map
Action Aging Summary
The Governance Portal for Risk
Management enables you to:
• Track unique loss event character-
istics that have meaning to your
organization
• Allocate losses to specific entities to
measure true business line impact
• Establish a risk scoring model that
complies with your risk management
methodology
• Monitor risk throughout your orga-
nization by establishing KRIs and
alerts
• Drive accountability throughout the
organization, facilitating online re-
mediation of issues and action items
• Aggregate risk information and focus
your attention on high-risk areas
To schedule a demo for the Governance
Portal for Risk Management, visit us at
www.protiviti.com/grc-software.
About Protiviti
Protiviti (www.protiviti.com) is a global consulting firm that helps companies solve problems in finance, technology, operations,
governance, risk and internal audit, and has served more than 35 percent of FORTUNE 1000®
and FORTUNE Global 500®
companies. Protiviti and its independently owned Member Firms serve clients through a network of more than 70 locations in
over 20 countries. The firm also works with smaller, growing companies, including those looking to go public, as well as with
government agencies.
Protiviti is a wholly owned subsidiary of Robert Half (NYSE: RHI). Founded in 1948, Robert Half is a member of the SP 500 index.
Rare
3
2
3
43
32Insignificant
Extremely Serious
Major
Moderate
Minor
Unlikely
43
23
22
44
Moderate
4
45
54
Likely
18
3
32
2
Certain
12
9
1
1
1
0
50
100
150 Closed
In Progress
Not Started
InternationalCorporate
Governance
Information
Technology
Human
Resources
© 2014 Protiviti Inc. 104213
© 2014 Protiviti Inc. 104213