IT Security Engineer
Beghou Consulting
full-time
Posted on:
Location Type: Hybrid
Location: Hyderabad • India
Visit company websiteExplore more
About the role
- Support SOC 2 (Type I & Type II), Future ISO 27001 readiness, and internal security audits as they relate to SOC and IT operations.
- Map security and SOC controls to applicable frameworks (AICPA Trust Services Criteria, ITGCs).
- Coordinate and manage audit evidence collection from SOC, endpoint, identity, and infrastructure teams.
- Perform control design and operating effectiveness reviews for SOC adjacent controls.
- Track audit findings, risks, and remediation actions through closure.
- Maintain continuous audit readiness rather than point-in-time compliance.
- Partner with IT and GRC to support vulnerability management oversight.
- Validate evidence of operational effectiveness for Purview-based controls.
Requirements
- 2–6 years of experience in information security, IT audit, SOC governance, or security compliance.
- Hands-on exposure to SOC audit or compliance activities.
- Working knowledge of: SOC 2 / ITGC concepts, Control testing and evidence collection.
- Familiarity with: ISO 27001, NIST CSF / 80053, AICPA Trust Services Criteria.
- Strong documentation, analytical, and stakeholder communication skills.
- Certifications (nice to have, not mandatory): CISA, ISO 27001 Foundation or LA, CRISC, Microsoft Security fundamentals.
Benefits
- Health insurance
- Professional development
- Flexible work arrangements
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
SOC 2ISO 27001ITGCcontrol testingevidence collectionNIST CSFNIST 80053audit readinessvulnerability managementoperational effectiveness
Soft Skills
documentationanalytical skillsstakeholder communication
Certifications
CISAISO 27001 FoundationISO 27001 LACRISCMicrosoft Security fundamentals