Your strategic partner...we understand and match your needs.

SOC 2 Consultant

ConsultantConsultantContractRemoteTeam 11-50Since 2007H1B No SponsorCompany Site LinkedIn

Location

United States

Posted

124 days ago

Salary

Not specified

Professional Certificate5 yrs expEnglishAWSAzureCloud

Job Description

• Lead SOC 2 Type II readiness engagements using AICPA SOC for Service Organizations guidance • Conduct gap assessments, control maturity reviews, and remediation planning aligned with the Trust Services Criteria • Design, review, and enhance controls based on the COSO Internal Control Integrated Framework • Develop or refine security policies, procedures, and governance documentation • Prepare and validate audit evidence based on AICPA audit evidence standards • Configure and optimize Drata for automated evidence collection, control mapping, and audit readiness • Align technical and operational controls with secure architecture frameworks • Guide clients through risk assessments, vendor oversight, incident response planning, and logging and monitoring practices

Job Requirements

5+ years of experience in IT Services
Expertise in AICPA Trust Services Criteria and SOC 2 Type II readiness
Strong understanding of control design and evaluation aligned to COSO
Proficiency with Drata, including setup, control mapping, workflows, and evidence automation
Experience with cloud security principles across AWS, Azure, or Google Cloud
Ability to create policies, procedures, and governance documentation
Strong skills in risk assessment, access control reviews, logging, monitoring, change management, and incident response
Proficiency in vendor risk management practices, including SIG or SCA formats
Excellent communication skills and experience advising executives and technical teams
Must hold at least one of the following certifications: CISA, CISSP, CCSP, ISO 27001 Lead Implementer or Lead Auditor
Nice to have certifications: CISM, CRISC, CompTIA Security+, GIAC GSEC