ZipRecruiter - Irvine, CA
posted 19 days ago
Full-time - Mid Level
Irvine, CA
About the position
Tevora is seeking an Information Security Consultant to join the SOC Compliance team, focusing on SOC 1 and SOC 2 compliance assessments for various clients. This role requires a blend of business acumen and technical expertise, with responsibilities including conducting assessments, leading compliance projects, and mentoring junior team members. The ideal candidate will have a detail-oriented approach, strong communication skills, and a commitment to continuous learning.
Responsibilities
- Participating in IT and Compliance assessments, audits, gap analyses, and remediation.
- Leading and actively contributing to SOC 1 and SOC 2 Compliance assessments.
- Communicating with project stakeholders to convey requirements for technical and process improvements.
- Participating in various information security compliance projects, such as PCI or ISO gap assessments.
- Assisting in the development of customized policies, procedures, controls, and disaster recovery plans.
- Managing policy exceptions and working with teams to document exceptions and identify remediation action plans.
- Providing mentorship to junior team members and participating in ongoing training opportunities.
Requirements
- Minimum 3 years of experience in information security, information technology, business consulting, enterprise risk, or compliance.
- At least 2 years of experience in SOC 2 Compliance assessments.
- Hold at least one Auditing, Risk, or IT certification (CISSP, CISA, CISM, CRISC, ISO Lead Auditor).
- Knowledge of common IT and security concepts such as firewall management, server management, access control, and authentication.
- Ability to communicate effectively across business and technical boundaries.
- Ability to work independently without detailed guidance.
- Proficient in writing executive-level reports and technical documentation.
- Proficient in MS Office tools.
Nice-to-haves
- Bachelor's degree from an accredited 4-year university.
- Experience in other information security compliance assessments (ISO 27001, PCI Level 1, HITRUST).
- Prior or current CPA license.
- Commitment to continued learning.
Benefits
- Comprehensive benefits offering
- Paid time off and holidays
- 401k with Company match
- Vibrant work culture
