Senior Consultant, SOC 2 Assessment

Stelle nicht auf LinkedIn

🕒 vor 7 Tagen

🇺🇸 Vereinigte Staaten – Remote

💵 $86.000 - $148.000 / Jahr

⏰ Vollzeit

🟠 Senior

💼 Berater

🦅 H1B-Visum-Sponsor

Dieses Unternehmen hat in der Vergangenheit H1B-Visa gesponsert.

Jetzt Bewerben

Ähnliche Remote-Jobs finden

E-Mails für Remote-Jobs erhalten

📊 Überprüfen Sie Ihre Lebenslauf-Bewertung für diese Stelle

Verbessern Sie Ihre Chancen auf ein Vorstellungsgespräch, indem Sie Ihre Lebenslauf-Bewertung vor der Bewerbung überprüfen.

Lebenslauf hochladen

Coalfire

WebsiteLinkedInAlle Stellen

1001 - 5000 Mitarbeiter

Gegründet 2001

🔒 Cybersecurity

📋 Compliance

🏢 Unternehmen

Cybersecurity • Compliance • Enterprise

Coalfire ist ein Anbieter von Cybersecurity-Dienstleistungen, der Unternehmen dabei hilft, ihre Sicherheitsresilienz zu verbessern und die Einhaltung von Vorschriften effizienter zu gestalten. Das Unternehmen bietet durch Experten geführte Dienstleistungen an, darunter bedrohungsorientierte Cybersecurity-Programme, Automatisierung der Compliance, Risikomanagement und Sicherheitsberatung in verschiedenen Branchen wie Finanzdienstleistungen, Gesundheitswesen, Einzelhandel und Technologie. Coalfire ist bekannt für seine Expertise sowohl auf der Hacker- als auch auf der Verteidigerseite, und seine Plattformen sind darauf ausgelegt, die Cyber-Resilienz der Kunden zu stärken, Angriffsflächen zu reduzieren und die Erreichung von Compliance-Zielen wie FedRAMP und HITRUST zu beschleunigen.

Beschreibung

• Lead audits/assessments including audit plan preparation, review of documentation and evidence, evaluation of procedures, and client interviews with a primary focus on SOC 2 followed by SOC 1 and C5 audits. • Maintain strong depth of knowledge in one or more cybersecurity frameworks. • Prepare, review, and approve assessment reports. • Manage priorities, tasks, and hours on projects in conjunction with the project manager and delivery team members to achieve delivery utilization targets. • Ensure quality products and services are delivered on time. • Escalate client and project issues to management in a timely manner to inform and engage the necessary resources to address the issue. • Provide mentorship to team members in areas of audit, assessment, technical review and writing. • Interface with clients through entire engagement, interacting with all levels of client organizations. • Establish and maintain positive collaborative relationships with clients and stakeholders. • Continuous professional development in maintaining industry specific certifications. Maintains strong depth of knowledge in the practice area. • Collaborate with project managers, quality management, sales and other delivery team members to drive customer satisfaction and meet project deliverables. • Establish account relationships and identifies upsell and cross sell opportunities and escalates to sales. • Draft audit programs that sufficiently address both the required objectives of the regulatory body and the complexity of the client environment. • Lead interview and inquiry walkthroughs with clients to determine the conformity of environments against stated requirements. • Communicate effectively with internal team members and external clients regarding assessment status. • Assess security vulnerabilities against the appropriate security frameworks. • Pursue and corroborate conclusions derived from inquiry procedures with client while ensuring diligent interview notes are captured. • Offline and remote evidence inspection of client provided documentation; appropriately mark artifacts requiring follow-up or additional clarification. • Educate and interpret compliance activities for clients. • Understand how to apply quality standards and adhere to a minimum benchmark for quality assurance throughout the documentation of each work product or deliverable. • Provide advice to customers on issues affecting the scope of work in a manner that provides additional value. • Develop documentation and author recommendations associate with findings on how to improve the customer’s security posture in accordance with appropriate controls. • Up to 20% Travel

🎯 Anforderungen

• Bachelor’s degree (four-year college or university) or equivalent combination of education and work experience. Degree preferably in Information Systems, CIS, MIS or IT • 3-5 years of experience in security frameworks and regulatory requirements (such as SOC 2, C5, SSPA, ISO, NIST, COBIT, HIPAA/HITECH, HITRUST or PCI). • The ability to evaluate the design and effectiveness of technology controls throughout the business cycle. • Demonstrated ability to structure and lead projects successfully • Strong written and verbal communication skills, with the ability to communicate succinctly and instill confidence with internal stakeholders and external customers. • Excellent Consulting skills: ability to advise and challenge the status quo while building strong relationships • Ability to build high-trust relationships, rapport and credibility quickly • Strong personal initiative to appropriately manage time, and manage time of others, to meet deadlines • Ability to shift focus frequently while maintaining excellent quality • Skill and will to train and mentor junior staff • Computer and typing skills that permit rapid data collection and note taking • Ability to facilitate meetings to small or large groups • Public speaking and executive presence that solicits attention • Inquisitive and curious nature with the ability to effectively probe for deeper information • Diplomatic and broad minded • Strong technical researcher

🏖️ Vorteile

• paid parental leave • flexible time off • certification and training reimbursement • digital mental health and wellbeing support membership • comprehensive insurance options