Senior IT/GRC SOC 2 Auditor
ISG
full-time
Posted on:
Location Type: Remote
Location: Remote • 🇨🇴 Colombia
Visit company websiteJob Level
Senior
Tech Stack
AWSAzureCloudCyber SecurityGoogle Cloud Platform
About the role
- Lead day-to-day activities for SOC 2 and other IT compliance engagements
- Guide staff, engage with clients, and deliver high-quality audits and readiness assessments
- Lead ITGC and application control testing efforts
- Guide and review work completed by junior team members
- Perform walkthroughs, testing, and documentation for SOC 2, SOC 1, and HIPAA engagements
- Identify control gaps and provide recommendations for remediation
- Maintain strong client relationships through clear and proactive communication
- Ensure timely progress updates and escalate issues to management
Requirements
- 3–4 years of experience performing IT audits, with a focus on ITGC and application controls
- Strong working knowledge of SOC 2 and related frameworks
- Bachelor’s degree in Accounting, MIS, Cybersecurity, or a related field
- Strong client communication and project management skills
- Bilingual in English required
- Experience with GRC tools (e.g., Vanta, Drata, Secureframe) (Nice to Have)
- Familiarity with cloud environments such as AWS, Azure, or GCP (Nice to Have)
- Progress toward CISA, CPA, CISSP, ISO 27001 Lead Auditor (Nice to Have)
Benefits
- Remote work with flexible hours
- Paid holidays and time off
- Growth opportunities in a fast-paced firm
- Bonus incentives tied to performance
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
IT auditsITGCapplication controlsSOC 2SOC 1HIPAAcontrol testingdocumentationremediation
Soft skills
client communicationproject managementleadershipteam guidancerelationship managementproactive communication
Certifications
CISACPACISSPISO 27001 Lead Auditor