Role overview

[1766] - SOC 2 Auditor

Staffy

Published via Mainder

What you'll do

About the role

We are looking for a SOC 2 Auditor to join a fast-growing security and compliance firm that supports over 1,200 organizations across SOC 1, SOC 2, PCI DSS, ISO 27001, and HIPAA frameworks.

In this role, you will execute IT audit engagements and readiness assessments while working closely with senior team members and client stakeholders. You will evaluate technology controls, identify improvement opportunities, and contribute to high-quality audit deliverables in a collaborative and fully remote environment.

This position is ideal for early-career professionals looking to deepen their expertise in IT compliance, security frameworks, and external audit practices.

Responsibilities

  • Execute day-to-day activities of IT audit engagements including SOC 1, SOC 2, and HIPAA assessments.

  • Support readiness assessments and external audits under the supervision of management.

  • Evaluate the design and operating effectiveness of technology controls.

  • Identify and communicate audit findings and observations to management and clients.

  • Support performance improvement recommendations for assigned clients.

  • Lead client meetings and maintain proactive communication throughout engagements.

  • Provide weekly status updates to internal management.

  • Proactively escalate risks, delays, or engagement challenges.

  • Collaborate cross-functionally with internal teams to ensure high-quality deliverables.

Requirements

Required Qualifications

  • Bachelor’s degree in Accounting, Business, Cybersecurity, or Management Information Systems.

  • At least 1 year of experience performing IT audit engagements at a Big 4 or other audit/consulting firm.

  • Basic knowledge of external audits and IT compliance frameworks.

  • Excellent written and verbal communication skills.

  • Bilingual English proficiency (required).

  • Ability to work both independently and collaboratively in a remote environment.

  • High level of motivation and willingness to learn.

Preferred Qualifications

  • Experience using GRC and compliance automation tools such as Vanta, Drata, or Secureframe.

  • Exposure to SOC reporting processes and compliance readiness projects.

  • Progress toward professional certifications.

Certifications (Nice to Have / In Progress)

  • CISA

  • CPA

  • CISSP

  • ISO 27001 Lead Auditor

  • PCI QSA

Benefits

  • 100% remote position (LATAM-based candidates)

  • Flexible Paid Time Off and paid holidays

  • Quarterly performance bonuses

  • Competitive salary and benefits package

  • Opportunities for professional growth and continuous development

  • Collaborative, global, and innovation-driven work environment

About the company

We are global audit firm founded by former Big 4 professionals, focused on transforming how organizations achieve cybersecurity and compliance. The company delivers tech-enabled audit and assurance services across frameworks such as SOC 2, ISO 27001, PCI DSS, HITRUST, CMMC, and FedRAMP, supporting clients across the Americas, EMEA, and APAC with modern tools, automation, and a forward-thinking approach.