Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Senior Consultant, SOC 2 Assessment

$86k - $148k
Full-time

Coalfire

Role Description

As a Senior Consultant you will work as part of a team assessing the security and compliance of client firms against regulatory and industry requirements and standards, and against security best practice frameworks. You will have an expert understanding of framework requirements, perform audit/assessments, and develop reports for clients. In the Senior Consultant role you will work closely with Project Managers, Directors and other Delivery team members to effectively manage project timelines and deliverables.

At Coalfire as a Senior Consultant you will help enhance our clients’ security posture, working with a wide range of clients to ensure that business and customer data is protected. This role will evaluate the design and effectiveness of technology controls throughout the business cycle and will help identify performance improvement opportunities. As a senior member of the team, you will also be responsible for enhancing engagement methodology, improving internal processes and overseeing and reviewing the work of Associates and Consultants.

This role facilitates Security Control Assessments and other advanced-level monitoring activities, often within cloud-based environments. To succeed, you will need a strong understanding of technical and non-technical security related system controls and an understanding of the various testing methods utilized to ascertain the effectiveness of those controls. The role works in a team atmosphere with an experienced Technical Project Lead, and is assigned technical sections and expected to create client-ready deliverables.

What You'll Do

  • Lead audits/assessments including audit plan preparation, review of documentation and evidence, evaluation of procedures, and client interviews with a primary focus on SOC 2 followed by SOC 1 and C5 audits.
  • Maintain strong depth of knowledge in one or more cybersecurity frameworks.
  • Prepare, review, and approve assessment reports.
  • Manage priorities, tasks, and hours on projects in conjunction with the project manager and delivery team members to achieve delivery utilization targets.
  • Ensure quality products and services are delivered on time.
  • Escalate client and project issues to management in a timely manner to inform and engage the necessary resources to address the issue.
  • Provide mentorship to team members in areas of audit, assessment, technical review and writing.
  • Interface with clients through entire engagement, interacting with all levels of client organizations.
  • Establish and maintain positive collaborative relationships with clients and stakeholders.
  • Continuous professional development in maintaining industry specific certifications. Maintains strong depth of knowledge in the practice area.
  • Collaborate with project managers, quality management, sales and other delivery team members to drive customer satisfaction and meet project deliverables.
  • Establish account relationships and identifies upsell and cross sell opportunities and escalates to sales.
  • Draft audit programs that sufficiently address both the required objectives of the regulatory body and the complexity of the client environment.
  • Lead interview and inquiry walkthroughs with clients to determine the conformity of environments against stated requirements.
  • Communicate effectively with internal team members and external clients regarding assessment status.
  • Assess security vulnerabilities against the appropriate security frameworks.
  • Pursue and corroborate conclusions derived from inquiry procedures with client while ensuring diligent interview notes are captured.
  • Offline and remote evidence inspection of client provided documentation; appropriately mark artifacts requiring follow-up or additional clarification.
  • Educate and interpret compliance activities for clients.
  • Understand how to apply quality standards and adhere to a minimum benchmark for quality assurance throughout the documentation of each work product or deliverable.
  • Provide advice to customers on issues affecting the scope of work in a manner that provides additional value.
  • Develop documentation and author recommendations associate with findings on how to improve the customer’s security posture in accordance with appropriate controls.
  • Up to 20% Travel.

Qualifications

  • Bachelor’s degree (four-year college or university) or equivalent combination of education and work experience. Degree preferably in Information Systems, CIS, MIS or IT.
  • 3-5 years of experience in security frameworks and regulatory requirements (such as SOC 2, C5, SSPA, ISO, NIST, COBIT, HIPAA/HITECH, HITRUST or PCI).
  • The ability to evaluate the design and effectiveness of technology controls throughout the business cycle.
  • Demonstrated ability to structure and lead projects successfully.
  • Strong written and verbal communication skills, with the ability to communicate succinctly and instill confidence with internal stakeholders and external customers.
  • Excellent Consulting skills: ability to advise and challenge the status quo while building strong relationships.
  • Ability to build high-trust relationships, rapport and credibility quickly.
  • Strong personal initiative to appropriately manage time, and manage time of others, to meet deadlines.
  • Ability to shift focus frequently while maintaining excellent quality.
  • Skill and will to train and mentor junior staff.
  • Computer and typing skills that permit rapid data collection and note taking.
  • Ability to facilitate meetings to small or large groups.
  • Public speaking and executive presence that solicits attention.
  • Inquisitive and curious nature with the ability to effectively probe for deeper information.
  • Diplomatic and broad minded.
  • Strong technical researcher.

Bonus Points

  • Any relevant CSP certifications (AWS solutions architect, etc.).
  • Any of the following information security certifications (CCSK, Security +, CISSP, CISM, Certified ISO 27001 Lead Implementer) or one audit certification (CISA, GSNA, Certified ISO 27001 Lead Auditor/Internal Auditor, IRCA ISMS Auditor or higher, CIA).
  • Experience working with technologies hosted via cloud computing environments (e.g., Amazon Web Services, Microsoft Azure, Google Cloud Platform).

Salary

$86,000 - $148,000 a year. The salary range listed is a reasonable estimate of the compensation range for this role based on national salary averages. The actual salary offer to the successful candidate will be based on job-related education, geographic location, training, licensure and certifications and other factors. You may also be eligible to participate in annual incentive, commission, and/or recognition programs.

Benefits

  • Flexible work model that empowers you to choose when and where you’ll work most effectively.
  • Prioritizes connection and wellbeing.
  • Opportunities to join employee resource groups, participate in in-person and virtual events.
  • Competitive perks and benefits to support you and your family, like paid parental leave, flexible time off, certification and training reimbursement, digital mental health and wellbeing support membership, and comprehensive insurance options.
Vacancy posted 14 hours ago
Similar jobs that could be interesting for youBased on the Senior Consultant, SOC 2 Assessment in Remote vacancy
  • Wilson Consulting Group, an innovative cybersecurity consulting firm based in Washington D.C., is seeking a Senior SOC 2 Type 2 Auditor to join as a remote contractor. The ideal candidate...  .... Previous experience in similar assessments is preferred for successful candidates... 
    Senior
    Remote job
    For contractors

    Wilson Consulting Group LLC

    New York, NY
    1 day ago
  • Trase Systems is seeking a Senior Security Assurance Manager to lead the strategic governance of its Security and...  ...Compliance program. This role involves overseeing SOC 2 and HIPAA programs, conducting risk assessments, and ensuring compliance in regulated markets. The ideal... 
    Senior
    Remote job

    Trase Systems

    Mc Lean, VA
    1 day ago
  • $198k - $248k

    A leading cybersecurity company is seeking a Domain Consultant 2 for SOC Transformation. This remote role requires over 6 years of experience in Security Operations or related fields. You will provide technical solutions in security and engage with customers at all levels... 
    Suggested
    Remote work

    Palo Alto Networks

    Phoenix, AZ
    1 day ago
  • Wilson Consulting Group LLC ‑ Senior SOC 2 Type 2 Auditor (Remote Contractor) Wilson Consulting Group (WCG) is an innovative global cybersecurity...  ...personal information. Gap analysis: Conducting readiness assessments and identifying any gaps in the organization's existing... 
    Senior
    For contractors
    Work at office
    Remote work

    Wilson Consulting Group

    New York, NY
    2 days ago
  • A leading cybersecurity company is looking for a Domain Consultant 2 for SOC Transformation in Los Angeles, California. In this remote role, you will leverage your expertise in AI-powered security operations to define technical solutions and guide customers in enhancing... 
    Suggested
    Remote job

    Palo Alto Networks

    Los Angeles, CA
    2 days ago
  • $198k - $248k

    A leading cybersecurity firm based in California seeks a Domain Consultant 2 to oversee SOC transformation. The ideal candidate will possess over 6 years of experience in Security Operations, demonstrate strong technical skills, and engage effectively with clients at all... 
    Remote job

    Palo Alto Networks

    San Diego, CA
    4 days ago
  • $184.8k

     ...Hospitable, Inc is looking for a Senior Compliance Officer to lead their compliance initiatives. This role involves managing the SOC 2 Type II compliance program and rolling out PCI DSS compliance. The candidate should have significant experience in compliance programs... 
    Senior
    Remote work

    Hospitable, Inc

    New York, NY
    2 days ago
  •  ...A leading workforce solutions company is seeking a Senior SOC Consultant Analyst to support both IT and OT security operations. The ideal candidate will have 3-12+ years of SOC experience and hands-on knowledge of OT security technologies, including Nozomi Networks. This... 
    Senior
    Remote work

    Manpower Group Inc.

    New York, NY
    4 days ago
  • $64k - $112k

     ...of technology to advise, assess, automate, and...  ...Position Summary The Security Consultant will work as part of a team...  ...with Project Managers, Senior Managers, Directors and...  ...What You'll Bring Minimum 2‑3 years of experience...  ...regulatory requirements (such as SOC 2, ISO, NIST, COBIT,... 
    Work experience placement
    Work at office
    Remote work
    Flexible hours

    Koitecc Solutions

    Chicago, IL
    4 days ago
  •  ...Clinical Documentation Integrity (CDI) Senior Consultant JOB SUMMARY: The Clinical Documentation...  ...AHIMA Practice Brief as the standard Assess adherence to Customer specific CDI...  ...~3+ years of consulting experience ~2+ years of CDI auditing and/or second level... 
    Senior
    Temporary work
    Remote work

    e4 health

    United States
    4 days ago
  •  ...Senior OpenText Migration Consultant Remote 6 Months A Senior OpenText Migration Consultant...  ...Responsibilities 1. Migration Planning & Assessment Analyze: Existing OpenText...  ...rules / compliance Phase 2 - Build Target Environment (25.4)... 
    Senior
    Remote work

    Artech

    United States
    3 days ago
  • $104.1k - $156.1k

     ...worldwide leader in Engineering and Technical Consulting. Rimkus experts specialize in building...  ..., legal, industrial, and other clients. Assesses and determines the cause and origin of...  ...Required or higher. ~ P.E. Required. ~2-10+ years of experience. ~ Project Management... 
    Senior
    Full time
    Temporary work
    Work at office
    Work from home
    Worldwide
    Home office
    Night shift

    Rimkus Consulting

    Honolulu, HI
    40 minutes ago
  • $105k - $120k

     ...The Senior Consultant works directly with Clearwater clients, focusing on delivering services,...  ...limited to: o Cybersecurity framework assessments (e.g., NIST, HITRUST, ISO 27001). o...  ...Requirements EXPERIENCE REQUIRED • 2-5 years of Consulting, Cybersecurity,... 
    Senior
    For subcontractor
    Remote work
    Flexible hours

    Clearwater Security & Compliance LLC

    United States
    2 days ago
  • $94k - $125k

     ...Senior Consultant, NetSuite Atlanta; Boston; Charlotte; Chicago; Dallas; Los Angeles; New York...  ...role with the flexibility to work remotely 2 days a week. Ideal candidates should be...  ...meetings with prospective clients to assess project level-of-effort with sales team... 
    Senior
    Work at office
    Local area
    Remote work
    2 days per week

    Accordion USA

    Los Angeles, CA
    3 days ago
  •  ...Workday Time Tracking & Absence Consultant in Kainos, you’ll work in a...  ...ESSENTIAL) REQUIREMENTS:  • At least 2-3 years of Workday Time...  ...Excellent customer focus, able to assess customer needs, build...  ...ability to formally present to senior Client audiences   • Strong commercial... 
    Senior
    Live in
    Remote work

    Kainos

    Indianapolis, IN
    9 days ago
  •  ...2500 distributors and partners, and over 2 million policyholders. WHO YOU ARE You are an experienced, client-focused consultant with a deep understanding of the life, annuity...  ..., including pricing exercises and impact assessments. Facilitate detailed Solution Definition... 
    Senior
    Work experience placement
    Work at office

    Dormont Manufacturing Company

    Alpharetta, GA
    17 hours ago
  • $102.5k - $187.9k

     ...build a better working world. Risk Consulting – Risk Technology – GRC/IRM Platforms – Senior Consultant The risk landscape is...  ...practice, you will help our clients assess, design, and implement integrated...  ...Engineering, or a related field and 2 years of experience implementing... 
    Senior
    Work experience placement
    Summer holiday
    Work at office
    Flexible hours

    Ernst & Young Oman

    Cleveland, OH
    17 hours ago
  •  .... The engagement runs in two phases: Phase 1 — Discovery & Assess (30 days). Inventory and risk-rank the estate (apps, flows, agents...  ...a prioritized governance backlog with measurable ROI. Phase 2 — Implement & Govern (60 days). Stand up the CoE Kit, Power Platform... 
    Senior
    Full time
    Remote work
    Day shift

    Proactive

    United States
    18 hours ago
  •  ...Senior Consultant, Advisory Delivery (Generalist) The role Senior Consultant, Advisory Delivery (...  ...controls, communicating results of risk assessment, and ensuring health and safety is considered...  ...re looking for someone with: Experience 2–5 years of experience in management... 
    Senior
    Local area
    Remote work
    Flexible hours

    Lloyd's Register Applied Technology Group

    Doral, FL
    17 hours ago
  •  ...You’ll Do: Client Leadership & Strategic Consulting Serve as a trusted advisor to healthcare...  ...initiatives Lead discovery sessions, workflow assessments, and strategic design conversations...  ...activities supporting Oracle Health Gen 2 modernization initiatives and patient engagement... 
    Senior

    Ll Oefentherapie

    Dover, DE
    1 day ago
  • $115k - $155k

     ...Senior Semiconductor IP Consultant Lumenci is seeking a Senior Semiconductor IP Consultant to support high‑stakes...  ...systems and design, including SoC, ASIC, FPGA, microprocessors, process...  ...to law firms and corporate clients. Assess and analyze patent portfolios to uncover... 
    Senior
    Contract work
    Remote work
    Flexible hours

    Lumenci

    Austin, TX
    1 hour ago
  • $25.48 - $63.65 per hour

     ...’ll Do: Client Leadership & Strategic Consulting Serve as a trusted advisor to healthcare...  ...Lead discovery sessions, workflow assessments, and strategic design conversations focused...  ...activities supporting Oracle Health Gen 2 modernization initiatives and patient engagement... 
    Senior
    Hourly pay
    Temporary work
    Flexible hours

    Oracle

    Honolulu, HI
    1 day ago
  • $80k - $125k

     ...clients across a wide range of industries and consulting assignments.**Job Responsibilities***...  ...arrive at value indications.* Identify, assess, and analyze comparable public/private companies...  ...firms.**Requirements*** Minimum 2 years progressively responsible valuations... 
    Senior
    Contract work
    Local area
    Work from home
    Flexible hours

    Armanino LLP

    Dallas, TX
    1 day ago
  • $115k - $155k

     ...Lumenci is seeking a Senior Semiconductor IP Consultant to support high-stakes patent litigation, IP strategy...  ...systems and design , including SoC, ASIC, FPGA, microprocessors, process...  ...law firms and corporate clients. Assess and analyze patent portfolios to uncover... 
    Senior
    Full time
    Contract work
    Remote work
    Worldwide
    Flexible hours

    Lumenci

    Austin, TX
    17 hours ago
  • $70k - $94k

    Strata Decision Technology is looking for a Senior Compliance Associate to join their IT team in Chicago, IL. The role requires expertise...  ..., risk, and compliance, with a focus on achieving HITRUST and SOC compliance. Candidates should have 4+ years of experience, excellent... 
    Senior
    Work from home

    Strata Decision Technology

    Chicago, IL
    4 days ago
  •  ...portfolio, including: ~Implementation consulting ~Risk & privacy assessments ~Policy reviews ~Internal...  ...check mapping inside Sprinto. ~Phase 2: packaged services for risk assessment...  .... ~Domain mastery in ISO 27001, SOC 2, GDPR; strong risk assessment experience... 
    Senior
    Contract work
    Remote work

    Sprinto

    Remote
    14 hours ago
  •  ...seeking a highly analytical, systems-minded Senior Consultant: Trust Assurance to join our expanding...  ...playbooks for risk and privacy assessments. This role demands a seasoned security...  ...data privacy rules, primarily ISO 27001, SOC 2, and GDPR . ~ Hands-on operational... 
    Senior
    Full time
    Remote work
    Work from home

    Sprinto

    India
    1 day ago
  • $198k - $245k

     ...IDEAYA Biosciences is seeking an experienced Senior Patent Agent. Reporting directly to the...  ...competitive IP landscape and IP trends to assess risk and opportunities Engage in clear communication...  ...and prosecution), including preferably 2-3 years in-house experience Proven track... 
    Senior
    Contract work
    Temporary work
    Work at office
    Local area
    Work from home

    Initial Therapeutics, Inc.

    South San Francisco, CA
    1 day ago
  • $85.2k - $127.8k

     ...for our Group Disability and Life new business and renewals for 2,000+ lives. Apply standard underwriting principles and procedures...  ...to acquire and renew National Account clients In-depth risk assessment and pricing of prospective and inforce customers in conformance... 
    Senior
    Local area
    Home office
    Flexible hours

    Stryker

    Portland, OR
    2 days ago
  • Quadient is looking for a Senior Manager of Compliance in Boston, MA to lead USPS SOC 1 and SOC 2 programs. This role involves audit execution, control design, and ongoing risk assessments while advising business and operations teams. Ideal candidates should have 7-10+... 
    Senior
    Remote work

    Quadient

    Boston, MA
    4 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Senior Consultant, SOC 2 Assessment. Be the first to apply!