Perform the day-to-day activities of IT audit engagements (SOC 1, SOC 2, HIPAA), and readiness assessments under the direction of a member of the management team.
Evaluate the design and effectiveness of technology controls.
Identifies and communicates IT audit findings to management.
Help identify performance improvement opportunities for assigned clients.
Communicate effectively with the clients and team members.
Lead client meetings and foster client relationships through proactive communication.
Provide weekly status reports to management.
Proactively communicate to management regarding any potential issues.

Bachelor’s degree in accounting, business, cybersecurity, or management information systems.
At least 1 year of experience performing IT audit engagements at a Big 4 or other audit/consulting firm.
Experience using GRC and compliance automation tools (Vanta, Drata, Secureframe) is a plus.
Candidates with an active or working towards CISA, CPA, CISSP, ISO27001 Lead Auditor, or PCI QSA certification.
Excellent oral and written communication skills in English.
Ability to work individually as well as collaboratively.
A high degree of motivation.
Spanish is a plus.

SOC 2 Staff Auditor

Key skills