Ben Frost, CISA, CIA, CRMA, MBA
Details
Duck Creek Technologies
Director, Information Security (GRC)
2022 : 2023
Duck Creek Technologies
Director, IT Internal Audit
• Manage a dedicated team of internal audit professionals including full-time employees and third-party contractors, with responsibility for approving scope and test plans, providing final workpaper review and sign-off, and communicating results to senior leadership and executive management. Successfully partners with management to resolve stakeholder concerns and continue to build risk and control acumen within the business.
• Execute the annual refresh of the internal audit universe including documenting risk profiles and developing the annual audit plan for the IT audit entities within the team’s portfolio.
• Manage and mentor team of IT auditors, third-party staff augmentation resources, and interns to provide coaching and guidance in audit methodology and processes including development of risk and control matrices, control testing procedures, documentation of workpapers, and issue and report writing and communication.
2020 : 2022
USAA
Audit Director
• Served as auditor-in-charge for IT infrastructure and digital risk-based audits. Executed, led, and managed audit engagements from beginning to end including planning, scoping, testing, and reporting while understanding horizontal and vertical impacts across the entire organization.
• Provided first-level review of audit workpapers ensuring documentation addresses objectives and meets quality standards.
• Assisted in the development of internal audit universe and annual plan.
• Helped develop and deliver department-wide training related to Application and IT General Control testing.
• Provided recommendations and template to department leadership for development of control design testing documentation. Continue to provide guidance to staff members in audit methodology, processes, documentation, development of risk and control matrices, testing procedures, issue development and vetting, and reporting.
2018 : 2020
USAA
Senior Audit Manager
2018 : 2018
USAA
Audit Manager
About
I am a dedicated team player with exceptional leadership, project management, and communication skills. I have a proven track record of successfully managing multiple projects at once, developing and managing IT/IS risk management programs, executing high quality audits, and delivering valuable reporting, insights, and recommendations to management.
I started my career in public accounting serving as the IT Specialist responsible for testing IT General Controls (ITGCs) in support of external financial statement audit engagements. I transitioned to roles within internal audit departments focusing on audits of IT operations and infrastructure. I currently operate in the Information Security GRC space, leading a team in the development and management of GRC programs to support the Cybersecurity function.
I am a Certified Information Systems Auditor (CISA) and a Certified Internal Auditor (CIA). I also hold a Certification in Risk Management Assurance (CRMA). I have a strong background in IT audit and IT risk management, governance, and compliance.
Profile Photo
