Summary
Overview
Work History
Education
Skills
Certification
Affiliations
Military Service
Languages
Timeline
Generic

Ubong Ekpo

Glen Burnie,MD

Summary

Senior IT Auditor and Risk Management professional with over 7 years of experience in IT audit, cybersecurity, risk management, and compliance. Expertise in developing and executing audit programs for IT systems, internal controls assessment, and regulatory compliance, including NIST, FAR, FISMA, COBIT, and OMB A-123. Adept at analyzing SOC 1 & SOC 2 reports, performing risk assessments, and ensuring compliance with U.S. Government regulations. Skilled in data analytics tools such as Power BI, Alteryx, and Archer GRC.


Overview

8
8
years of professional experience
1
1
Certification

Work History

IT Audit Associate

Booz Allen Hamilton
07.2023 - Current

IT Audit Associate, Citizen Services Accounting Group (July 2023 – Present)

  • Conduct IT audit support for the Securities Exchange Commission (SEC) and assist with OIG, FISMA, A-123, and GAO audits.
  • Assess and document internal controls, cybersecurity risks, and IT compliance in accordance with NIST frameworks.
  • Prepare audit documentation, analyze POCs and PBCs, and ensure timely audit execution.
  • Prepared working papers, reports and supporting documentation for audit findings.
  • Prepared comprehensive audit reports, detailing findings and presenting recommendations for improvement.

Senior Associate, IT Audit

Grant Thornton LLP
12.2021 - 06.2023
  • Conducted internal IT audits and compliance reviews, focusing on risk-based assessments, IT general controls (ITGCs), and cybersecurity frameworks.
  • Assisted government agencies in improving governance, risk management, and compliance (GRC).
  • Led execution of audit programs in accordance with FISMA, COBIT, and OMB Circular A-123.
  • Streamlined operational efficiency by identifying areas for improvement and proposing actionable solutions.
  • Effectively managed multiple competing priorities while maintaining focus on delivering exceptional results for clients and the organization.

Senior IT Audit Consultant

Blue Cross Blue Shield Association
03.2019 - 05.2021
  • Executed risk management and IT audit programs, assessing access controls, configuration management, and change management.
  • Performed walk-throughs and control testing to ensure compliance with federal and commercial IT security standards.
  • Utilized Archer GRC for audit documentation and compliance tracking.
  • Evaluated internal control systems for effectiveness, recommending improvements as necessary.
  • Advised clients on strategies for mitigating risks associated with regulatory requirements and changes in legislation.

Senior Internal IT Auditor

Universal Service Administrative Company
11.2016 - 03.2019
  • Led IT risk assessments and conducted ITGC testing for critical business processes.
  • Evaluated entity-level controls and business process risks to enhance security compliance.
  • Assisted in financial statement audits, testing automated controls and segregation of duties.
  • Enhanced IT security by conducting comprehensive audits and identifying potential risks within the organization.
  • Provided expert advice on regulatory compliance matters, supporting the organization in achieving and maintaining required certifications and standards.

Education

Bachelor of Engineering - Electronics Engineering

University of Nigeria
Nigeria
01.1999

Skills

  • Knowledge of IT Audit tools - Team Mate, SharePoint, Pentana, Oracle Primavera, Visual Basic, WORD, PowerPoint, Outlook, Access database, advanced Excel tools, Pivot Tables, VLOOKUP, macros, data analytics tools, and Tableau
  • IT audit
  • Internal controls
  • Audit documentation
  • Change management
  • Access controls
  • Effective communication
  • Analytical thinking
  • Problem solving
  • Control testing
  • Documentation review
  • Report writing
  • Audit planning
  • Audit report writing

Certification

  • CompTIA Security +, 2024
  • ISC2 CISSP Candidate
  • IT Audit and Cybersecurity Program
  • Securing and Auditing Your Network Infrastructure: Network Services, Devices and Perimeter Security – ASC231 (MISTI)

Affiliations

Institute of Internal Auditors (IIA)

Military Service

Sergeant E-5, United States Army Reserve, Veteran, True, 02/01/03, 08/31/04, Iraqi Freedom, Warrior Citizen Award for serving in Iraq during operation Iraqi freedom

Languages

English

Timeline

IT Audit Associate

Booz Allen Hamilton
07.2023 - Current

Senior Associate, IT Audit

Grant Thornton LLP
12.2021 - 06.2023

Senior IT Audit Consultant

Blue Cross Blue Shield Association
03.2019 - 05.2021

Senior Internal IT Auditor

Universal Service Administrative Company
11.2016 - 03.2019

Bachelor of Engineering - Electronics Engineering

University of Nigeria
Ubong Ekpo