About our CEO

Ibrahim Yussuf has over 15 years’ experience working within the IT Audit arena at various big four accounting firms. Upon Graduating Virginia Tech University in 2008, he worked for various consulting firms as an IT Auditor including Deloitte & Touché LLP, Ernst and Young LLP & Protiviti. Mr. Yussuf has extensive experience performing controls testing work around IT General Controls and Application Controls at various clients. He is a subject matter expert that has extensive experience performing the following:

• Planning and making scoping decisions for IT Audits, IT Security Implementations (SOX ITGC, FISCAM/FISMA, SOC 1 Type 2)

• Developing policies and procedures to ensure compliance with various IT Security standards.

• Creating Audit Work Programs/Test Plans/Procedures to ensure Test of Design and Test of Operating Effectiveness are considered.

• Performing Walkthroughs and interviewing key IT personnel and management to gain an understanding of key business processes and control areas such as Change/Configuration Management, Security Management, Risk Management, Contingency Planning, Access Controls (physical and logical access) as well as Segregation of duties.

• Analyzing SOC 1 reports of external service providers and determining impact on user entities. Analyzing Complimentary User Entity Controls (CUEC’s) of User Entities to determine compliance.

• Testing Controls & Documenting Work papers

• NFR/Issue development

• Communicating with upper-level management on Remediation efforts.

Presently, Mr. Yussuf operates as the CEO of K2 IT Audit LLC and performs SOX ITGC, FISCAM and FISMA audits for various Federal and Commercial clients. K2 IT Audit LLC employs 25+ full time employees who are specialists in the field of IT Audit and most have active security clearances.

Mr. Yussuf is also the author of the book – “IT Auditing – Defined” which was published in July 2021 by Mascot Books and has developed a training program for junior auditors on how to perform all aspects of an IT Audit within the federal space.

Mr. Yussuf has active CISA, CISM, and FITSP-A credentials.