Search Remote Jobs

SOC 2 and CMMC Internal Audit Liaison

Job not on LinkedIn

🕒 September 8, 2025

đŸ‡ș🇾 United States – Remote

⏰ Full Time

🟡 Mid-level

🟠 Senior

🔎 Auditor

🩅 H1B Visa Sponsor

info
Apply Now
Find Similar Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Logo of VICTORY

VICTORY

51 - 200 employees

Founded 2019

☁ SaaS

🔒 Cybersecurity

đŸ€– Artificial Intelligence

SaaS ‱ Cybersecurity ‱ Artificial Intelligence

VICTORY is a technology solutions company that provides a wide array of services aimed at digital transformation and business evolution. They specialize in cloud architecture, cybersecurity, AI and data science, DevOps/DevSecOps, mobile apps, websites, digital marketing, and e-commerce. VICTORY helps businesses leverage the newest technologies like AI to enhance decision-making, improve efficiency, and accelerate business growth. With expertise in security, cloud cost management, and Python development, they cater to enterprise, government, and clients in regulated industries.

📋 Description

‱ Work with our engineers, support representatives, and external auditors to develop and maintain audit programs. ‱ Perform complex, senior-level auditing and advisory work to develop a new audit program and processes for SOC2 and Department of Defense (DOD) Cybersecurity Maturity Model Certification (CMMC) / FedRAMP. ‱ Conduct research, benchmarking, examining and reviewing records & financial statements. ‱ Perform data & risk analyses, identify appropriate controls, assess business processes, and evaluate management processes. ‱ Manage the development of an appropriate audit scope, selection of an external auditor, and successful completion of audits annually. ‱ Continuously collect operational documentation and data samples to close process gaps or document accepted risk before a gap becomes a finding. ‱ Maintain relationships with external auditors to anticipate changes to audit focuses and prepare the organization. ‱ Educate the organization about audit requirements, risk analysis and controls, and assist with integrating best practices into existing operational framework. ‱ Identify and document corrective actions based on audit reports. ‱ Respond to client requests for documentation of processes and audit reports. ‱ Understand and follow changes to CUECs from partners and vendors.

🎯 Requirements

‱ Auditing in accordance with generally accepted auditing standards and risk-based internal auditing. ‱ Basic information technology controls in a cloud environment. ‱ Analyzing, interpreting, and summarizing data, policies, and procedures for effective performance of audit work. ‱ Establishing and maintaining trust-based relationships with internal and external stakeholders. ‱ Have advanced writing and communication skills. ‱ Be willing to apply your skills across our small organization, from the low level (e.g. writing process documentation) to high level (e.g. developing organizational audit plans). ‱ Help us maintain the culture and values of our organization. ‱ Some experience with DOD cybersecurity requirements and contracts, e.g. NIST 800-171. ‱ Some experience with FedRAMP requirements.

Apply Now