SOC 2 Compliance Assessor Consultant

Summary

Join RSI Security, a leading cybersecurity compliance firm, as a SOC 2 Compliance Assessor Consultant. This part-time, remote contract position offers a competitive compensation based on experience and location. You will lead SOC 1 & SOC 2 audits, conduct gap assessments, and develop remediation plans. Responsibilities include configuring compliance platforms, training clients, and collaborating with internal and external teams. The ideal candidate possesses a Bachelor's degree, 3+ years of relevant experience, and relevant certifications (CISA, CIPP, CIA, CISM, CISSP, CPA preferred). Strong project management, communication, and analytical skills are essential. RSI Security offers flexibility, opportunities for growth, and a values-driven culture.

Requirements

• Bachelor’s in Accounting, Cybersecurity, IT, Info Systems, or related discipline
• 3+ years of combined SOC 1/SOC 2 audit and advisory experience
• Proficiency with SOC 2 Trust Service Criteria, AICPA Trust Services, and SOX IT controls
• Hands-on with GRC automation tools (Vanta, Drata, or equivalent)
• Relevant certification: CISA, CIPP, CIA, CISM, CISSP, CPA (CPA highly preferred)
• Big Four or equivalent firm background

Responsibilities

• Lead SOC 1 & SOC 2 (Type I/II) control scoping, testing, and reporting
• Conduct gap assessments, document deficiencies, and craft prioritized remediation roadmaps for SOC 2 readiness
• Configure and optimize compliance platforms (Vanta, Drata)
• Train client teams on evidence collection, continuous monitoring, and dashboard utilization
• Serve as a trusted partner to IT and business leaders—explaining complex controls in clear, non-technical terms
• Coordinate with external auditors and internal SOX IT teams to align on scope and deliverables
• Prepare concise audit reports and management responses
• Identify process enhancements and share best practices to elevate RSI Security’s methodologies
• Represent RSI Security at client workshops and industry forums

Preferred Qualifications

• Familiarity with NIST CSF, ISO 27001, COBIT, PCI-DSS, ITIL
• Experience in payments, financial services, or regulated industries
• Strong project management: prioritize tasks, balance workloads, adapt quickly
• Exceptional communication: tailor technical insights for varied audiences
• Analytical rigor: assess control design and operating effectiveness
• Client-centric approach: deliver practical, risk-based recommendations
• Collaborative mindset and continuous-improvement orientation

Benefits

• Flexibility: 100% remote with optional travel for high-impact engagements
• Impact: Directly shape compliance posture for leading global clients
• Growth: Access ongoing training, certifications, and mentorship