< class="a-h1 font--blue js-o-pageHeroBanner__header " id="vw_hero_banner">Ben Franjesevic Director Ben is a Director with over 16 years of experience focused on helping organizations assess and manage their technology risk. Ben has supported engagements in numerous areas including IT governance, IT general controls, system development, issues management, AI/ML, robotic process automation, process mining, cybersecurity, data analytics, and asset management. He has worked with organizations in various industries acting in roles across the three lines of defense. Ben helps to support Protiviti’s Next Gen Internal Audit initiatives globally and is a frequent speaker on topics including AI / ML, process mining, advanced analytics, Agile audit, and RPA risk and control. Prior to joining Protiviti in 2012, Ben worked for the Internal Audit Department of a local government entity where he was responsible for leading and executing operational and IT audits.Major ProjectsOversaw IT risk assurance and risk management functions for a Fortune 50 financial services organization, including management control self-testing, issue management, and rapid risk assessments for key risk areas (e.g., virtualization, application security, insider threat management, application development).Supported IT risk assurance and management functions for a large property and casualty insurer, including helping to refresh the organization’s process, risk and control framework and overseeing control self-testing teams focused on IT SOX and SOC1 controls across the organization’s technology portfolio.Led the year 1 establishment of a SOX program for a large retailer, including the identification and formalization of key IT general controls and application controls, documentation of the IT control environment via process narratives and process flows, initializing the program in their GRC solution, performing initial design and operating effectiveness testing, and supporting management in the remediation of control gaps.Oversaw various projects focused at enhancing governance, risk management, and compliance processes at a global insurance brokerage, including developing their global IT policies and procedures, enhancing risk taxonomies and control frameworks, preparing for the implementation of a GRC system, formalizing cybersecurity programs, and providing audit readiness support in preparation for internal and external audits.Supported IT remediation efforts at a retail organization focused on addressing gaps related to user access reviews, segregation of duties, and technology monitoring procedures for store locations.Supported the development of the IT audit strategy and corresponding definition of supporting audit technology reference architecture for a large international bank.Supported technology risk and audit engagements across the lines of defense at organizations in various industries focusing on topics such as IT SOX, asset management, IT governance, SDLC, cybersecurity, cloud, and other risk areas.Areas of ExpertiseIT Risk ManagementIT and Internal AuditNext Gen Emerging TechnologiesCybersecurityIndustry Expertise Financial ServicesInsuranceConsumer ProductsIndustrial ProductsManufacturing & DistributionEducation B.S., Corporate Finance, University of AkronProfessional Memberships & CertificationsCertified Internal Auditor (CIA)Certified Information Systems Auditor (CISA)Certified Management Accountant (CMA)Certified Scrum Master (CSM)Member, IIAMember, ISACAMember, IMALanguagesEnglish (Native)
