SOC 2 & Compliance Manager

This is a fully remote position, open to applicants in Philippines.

📋 Description

• Oversee IT audit and assurance projects, which include SOC 1, SOC 2, SOC 3, SOC for Cybersecurity, HITRUST, HIPAA, and various other compliance assessments.

• Work alongside senior team members and Partners to conduct risk assessments, plan audits, and prepare reports.

• Direct daily engagement activities while providing guidance, oversight, and constructive feedback to staff and seniors.

• Foster and sustain client relationships through proactive communication and exceptional service delivery.

• Supervise the assessment of IT control design and operational efficiency.

• Identify and effectively communicate audit findings and suggestions for remediation to clients.

• Engage in client meetings to ensure a positive experience throughout the engagement process.

• Contribute to the ongoing enhancement of assurance methodologies, tools, and documentation standards.

• Ensure that all work adheres to quality control and professional standards.

• Aid in training and mentoring team members to promote skill enhancement and career advancement.

• Provide weekly status reports to management, including updates on progress and issue escalation.

• Exhibit professionalism, integrity, and ethical conduct in all activities.

• Stay updated on regulatory changes, industry standards, and best practices in IT audit.

• Proactively bring potential engagement or client issues to the attention of firm leadership.

• Participate in business development initiatives, including proposal assistance and client presentations.

• Undertake special projects assigned by the partner group as necessary.

⛳️ Requirements

• 4–6 years of experience in IT audit and assurance, ideally within a Big 4 or public accounting/advisory firm.

• Familiarity with GRC/compliance automation tools (e.g., Vanta, Drata, Secureframe) is advantageous.

• CPA certification is mandatory – Candidates who are in the process of obtaining CPA licensure will also be considered.

• Preferred (but not mandatory) certifications include: CISA, CISSP, ISO 27001 Lead Auditor, or PCI QSA.

• Bachelor’s degree in accounting, business, cybersecurity, or management information systems.

🏝️ Benefits

• Flexible Paid Time Off and paid holidays

• Performance Bonuses

• 100% Remote