SOC 2 Compliance Assessor Consultant

Job Description

Location: 100% Remote, Globally, Work from anywhere
Type: Contracted, Project Based, Part-Time
Pay: Based on experience, education, geographic location, and market rates.
Travel: None

*** Please ensure you read through the entire job posting and you also understand the work model, expectations, requirements, location, and qualification requirements for this role. ***

About Us:
RSI Security is a leading cybersecurity compliance firm that specializes in providing comprehensive security assessment, advisory, and technical security testing services. We support organizations in navigating the complex cybersecurity landscape, ensuring they achieve and maintain compliance while managing risks effectively.

Position Summary:
The Information Security Assessor Consultant (SOC 2 Advisory) will work with clients to prepare for SOC 2 audits by conducting gap assessments, reviewing security controls, and providing remediation guidance. This role is focused on advisory rather than official audit attestation and requires strong expertise in SOC 2 Trust Service Criteria and regulatory frameworks. In this role, the incumbent must be comfortable working independently with clients on compliance readiness and should ideally have experience using GRC automation tools like Vanta or Drata to streamline compliance processes.

Roles & Responsibilities:

• Conduct SOC 2 readiness assessments and identify compliance gaps.
• Assist clients in implementing security controls aligned with Trust Service Criteria.
• Review policies, procedures, and technical implementations to ensure SOC 2 compliance.
• Provide guidance on evidence collection and audit preparedness.
• Develop remediation plans and advise on best practices for closing compliance gaps.
• Participate in client meetings, document findings, and communicate recommendations effectively.
• Stay updated on SOC 2 requirements and emerging cybersecurity compliance trends.

Required Qualifications:

• Bachelor's degree in Cybersecurity, Computer Science, Information Systems, or a related field.
• Minimum 2 years of experience in SOC 2 advisory, cybersecurity compliance, or IT risk management.
• Relevant certification (e.g., Certified Information Systems Auditor (CISA), Certified Information Privacy Professional (CIPP), or similar credentials).
• Strong understanding and knowledge of SOC 2 Trust Service Criteria and security control implementations/frameworks.
• Experience with frameworks such as ISO 27001, NIST CSF, CIS Controls, and PCI DSS.
• Hands-on experience with GRC tools such as Vanta or Drata for compliance management, or similar compliance automation platforms.
• Proficiency in documentation review, risk assessments, and gap analysis.
• Excellent written and verbal communication skills, with the ability to translate technical compliance requirements for non-technical stakeholders.

Compensation for this role will be determined based on the candidate’s experience, qualifications, and location. As a global employer, we take into account local market conditions and cost of living to ensure fair and competitive pay. We offer a comprehensive benefits package that may vary by country, and we are committed to ensuring that all employees are compensated equitably for the value they bring to the organization.

Our commitment to equity, equal opportunity, and is part of our broader commitment to respecting fundamental human rights across our value chain. RSI Security is proud to be an Equal Opportunity Employer. The Company will consider for employment qualified applicants with arrest and conviction records.

Equal Opportunity Employer/Veterans/Disabled

For more information on RSI Security, please visit our website - www.rsisecurity.com or our social media RSI Security LinkedIn. On our career site, you will find some of the key steps you can expect to guide you along the way.