Role overview

[1767] - Sr SOC 2 Auditor

Staffy

Published via Mainder

What you'll do

About the role

We are looking for a Senior SOC 2 Auditor to join a fast-growing global audit and cybersecurity compliance firm that delivers next-generation audit services across SOC 2, ISO 27001, PCI DSS, HITRUST, CMMC, and FedRAMP frameworks.

In this role, you will lead day-to-day IT compliance engagements, guide junior auditors, and maintain direct client interaction to ensure high-quality audit delivery. You will play a key role in executing and reviewing control testing, identifying remediation opportunities, and driving structured, efficient audit processes within a tech-enabled environment.

This position is ideal for professionals who combine strong technical audit knowledge with leadership capability and client-facing experience.

Responsibilities

  • Lead ITGC and application control testing efforts across compliance engagements.

  • Perform walkthroughs, testing, and documentation for SOC 2, SOC 1, and HIPAA audits.

  • Guide, review, and provide feedback on work completed by junior team members.

  • Identify control gaps and provide structured remediation recommendations.

  • Maintain strong client relationships through proactive and clear communication.

  • Ensure timely progress updates and escalate risks or issues to management.

  • Support readiness assessments and ongoing compliance initiatives.

  • Contribute to process improvements that enhance audit efficiency and quality.

Requirements

Required Qualifications

  • 3–4 years of experience performing IT audits with focus on ITGC and application controls.

  • Strong working knowledge of SOC 2 and related compliance frameworks.

  • Bachelor’s degree in Accounting, MIS, Cybersecurity, or related field.

  • Strong client communication and stakeholder management skills.

  • Experience managing multiple workstreams within structured project timelines.

  • Bilingual English proficiency (required).

Nice to Have

  • Experience working with GRC and compliance automation tools such as Vanta, Drata, or Secureframe.

  • Familiarity with cloud environments (AWS, Azure, or GCP).

  • Progress toward certifications such as CISA, CPA, CISSP, or ISO 27001 Lead Auditor.

Benefits

  • 100% Remote work environment with flexible hours.

  • Paid holidays and flexible time off.

  • Performance-based bonus incentives.

  • Growth opportunities within a fast-scaling global audit firm.

  • Exposure to multiple cybersecurity and compliance frameworks.

About the company

We are a global audit and cybersecurity compliance firm founded by former Big 4 professionals, focused on transforming how organizations achieve compliance. Leveraging compliance automation and advanced collaboration tools, the firm supports nearly 2,000 clients across the Americas, EMEA, and APAC. The culture emphasizes innovation, performance, and long-term professional growth within a rapidly expanding international team.