HimalayasHimalayas logo
VI

SOC2 & CMMC Internal Auditor Liaison

Victory
United States only

Stay safe on Himalayas

Never send money to companies. Jobs on Himalayas will never require payment from applicants.

You will work with our engineers, support representatives, and external auditors to:

  • Perform complex, senior-level auditing and advisory work to develop a new audit program and processes for SOC2 and Department of Defense (DOD) Cybersecurity Maturity Model Certification (CMMC) / FedRAMP.
  • Conduct research, benchmarking, examining and reviewing records & financial statements.
  • Perform data & risk analyses, identify appropriate controls, assess business processes, and evaluate management processes.
  • Manage the development of an appropriate audit scope, selection of an external auditor, and successful completion of audits annually.
  • Continuously collect operational documentation and data samples in order to close process gaps or to document accepted risk before a gap becomes a finding.
  • Maintain relationships with our external auditors to anticipate changes to audit focuses and prepare the organization for them.
  • Educate the organization about audit requirements, risk analysis and controls, and assist us with integrating best practices into our existing operational framework.
  • Identify and document corrective actions that need to be taken based on audit reports.
  • Respond to client requests for documentation of our processes and audit reports.
  • Understand and follow changes to CUECs from our partners and vendors.

Requirements

You have experience with:

  • Auditing in accordance with generally accepted auditing standards and risk-based internal auditing.
  • Basic information technology controls in a cloud environment.
  • Analyzing, interpreting, and summarizing data, policies, and procedures for effective performance of audit work.
  • Establishing and maintaining trust-based relationships with internal and external stakeholders.

You should...

  • Have advanced writing and communication skills.
  • Be willing to apply your skills across our small organization, from the low level (e.g. writing process documentation) to high level (e.g. developing organizational audit plans).
  • Help us maintain the culture and values of our organization.

It would be a plus if you have...

  • Some experience with DOD cybersecurity requirements and contracts, e.g. NIST 800-171.
  • Some experience with FedRAMP requirements.

About the job

Apply before

Posted on

Job type

Full Time

Experience level

Mid-level

Education

Bachelor degree

Location requirements

United States

Hiring timezones

United States +/- 0 hours

Job categories

SOC 2 AuditsInternal AuditCompliance & AuditCybersecurity ComplianceIT Audit

Skills

SOC 2 AuditsCMMCFedRAMPInternal AuditingRisk AnalysisData AnalysisBusiness Process AnalysisFinancial Statement AuditsDocumenting Operational ProcessesAudit PlansSOC2DoD Security RequirementsAuditingAudit Management

Browse similar jobs

Remote Mid-level SOC-2-Audits JobsRemote Full Time SOC-2-Audits JobsRemote Mid-level SOC-2-Audits Jobs in United StatesRemote Full Time Jobs in United StatesRemote SOC-2-Audits Jobs in United States
Claim this profileVI

Victory

View company profile

Similar remote jobs

Here are other jobs you might want to apply for.

View all remote jobs

4 remote jobs at Victory

Explore the variety of open remote roles at Victory, offering flexible work options across multiple disciplines and skill levels.

View all jobs at Victory

Find your dream job

Sign up now and join over 100,000 remote workers who receive personalized job alerts, curated job matches, and more for free!

Sign up
Himalayas profile for an example user named Frankie Sullivan