Senior Consultant, SOC 2 Assessment

This position is posted by Jobgether on behalf of a partner company. We are currently looking for a Senior Consultant, SOC 2 Assessment in United States.

This role sits at the intersection of cybersecurity consulting, audit delivery, and client advisory, with a strong focus on SOC 2 assessments and related compliance frameworks. You will lead end-to-end security and compliance evaluations for a diverse portfolio of clients, helping organizations strengthen their control environments and meet regulatory expectations. The position involves direct client interaction, including interviews, evidence review, and executive reporting, often in complex cloud-based environments. You will play a key role in shaping assessment quality, mentoring junior team members, and improving internal delivery methodologies. Working closely with project managers and technical leads, you will help ensure engagements are delivered on time and to high quality standards. This is a highly collaborative, client-facing role suited to someone who thrives in structured consulting environments while maintaining technical depth. You will also contribute to identifying improvement opportunities and supporting long-term client relationships.

Accountabilities

In this role, you will lead and support SOC 2-focused security and compliance assessments while contributing to broader audit and advisory engagements across multiple frameworks. You will be responsible for managing client interactions, evaluating control effectiveness, and producing high-quality deliverables that support compliance and risk objectives.

• Lead SOC 2 audits and assessments, including planning, evidence review, control testing, and client interviews, while also supporting SOC 1, C5, and related frameworks
• Evaluate the design and operational effectiveness of technology and security controls across cloud and enterprise environments
• Conduct walkthroughs, collect and validate audit evidence, and document findings in client-ready reports and recommendations
• Collaborate with project managers and delivery teams to manage timelines, priorities, and engagement quality standards
• Mentor and review the work of junior consultants, ensuring accuracy, consistency, and adherence to methodology
• Communicate findings clearly to clients, including executives and technical stakeholders, and support remediation guidance

Requirements

This role requires strong consulting experience in cybersecurity, audit, or compliance, with proven expertise in SOC 2 and related frameworks. You should be confident working with technical controls, client-facing discussions, and structured reporting in fast-paced environments.

• 3–5+ years of experience in cybersecurity compliance, audit, or security consulting (SOC 2, ISO 27001, PCI, NIST, HITRUST, etc.)
• Strong understanding of IT general controls and ability to evaluate design and effectiveness of security controls
• Experience conducting assessments, interviews, evidence collection, and audit report writing
• Familiarity with cloud environments (AWS, Azure, or GCP) and modern infrastructure concepts
• Strong communication skills with ability to translate technical findings into clear, risk-based language
• Ability to manage multiple priorities, deadlines, and client expectations in consulting environments
• Bachelor’s degree in Information Systems, Computer Science, or related field (or equivalent experience)
• Relevant certifications (e.g., CISA, CISSP, ISO 27001) are considered a strong plus

Benefits

• Competitive base salary range of approximately $86,000–$148,000 depending on experience and location
• Eligibility for annual incentive, commission, and recognition programs
• Flexible work model with remote or hybrid arrangements depending on role needs
• Paid time off, including flexible vacation policies and paid parental leave
• Comprehensive health coverage, including medical, dental, and vision plans
• Certification reimbursement and ongoing professional development support
• Mental health and wellbeing resources and employee assistance programs
• Opportunities to join employee resource groups and participate in company events

How Jobgether works:

We use an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. Our system identifies the top-fitting candidates, and this shortlist is then shared directly with the hiring company. The final decision and next steps (interviews, assessments) are managed by their internal team.

We appreciate your interest and wish you the best!

 Why Apply Through Jobgether? 

Data Privacy Notice: By submitting your application, you acknowledge that Jobgether will process your personal data to evaluate your candidacy and share relevant information with the hiring employer. This processing is based on legitimate interest and pre-contractual measures under applicable data protection laws (including GDPR). You may exercise your rights (access, rectification, erasure, objection) at any time.

#LI-CL1