SOC 2 and CMMC Internal Audit Liaison

Remote Full-time
Job Description: • Work with our engineers, support representatives, and external auditors to develop and maintain audit programs. • Perform complex, senior-level auditing and advisory work to develop a new audit program and processes for SOC2 and Department of Defense (DOD) Cybersecurity Maturity Model Certification (CMMC) / FedRAMP. • Conduct research, benchmarking, examining and reviewing records & financial statements. • Perform data & risk analyses, identify appropriate controls, assess business processes, and evaluate management processes. • Manage the development of an appropriate audit scope, selection of an external auditor, and successful completion of audits annually. • Continuously collect operational documentation and data samples to close process gaps or document accepted risk before a gap becomes a finding. • Maintain relationships with external auditors to anticipate changes to audit focuses and prepare the organization. • Educate the organization about audit requirements, risk analysis and controls, and assist with integrating best practices into existing operational framework. • Identify and document corrective actions based on audit reports. • Respond to client requests for documentation of processes and audit reports. • Understand and follow changes to CUECs from partners and vendors. Requirements: • Auditing in accordance with generally accepted auditing standards and risk-based internal auditing. • Basic information technology controls in a cloud environment. • Analyzing, interpreting, and summarizing data, policies, and procedures for effective performance of audit work. • Establishing and maintaining trust-based relationships with internal and external stakeholders. • Have advanced writing and communication skills. • Be willing to apply your skills across our small organization, from the low level (e.g. writing process documentation) to high level (e.g. developing organizational audit plans). • Help us maintain the culture and values of our organization. • Some experience with DOD cybersecurity requirements and contracts, e.g. NIST 800-171. • Some experience with FedRAMP requirements. Benefits: Apply tot his job
Apply Now

Similar Opportunities

Network Security Director - Cybersecurity Engineering

Remote

Cyber Risk & Compliance Specialist - USGS Federal Systems (REMOTE)

Remote

Director of Cybersecurity Governance, Risk & Compliance

Remote

Associate Director - Cybersecurity Posture and Hygiene (Remote)

Remote

CFO Consultant, Cybersecurity

Remote

[Remote] Sales Director (Cybersecurity SaaS)

Remote

Director, Cyber Mission Support Team (Remote)

Remote

AI Cybersecurity Consultant

Remote

Cybersecurity Practice Manager - Network and Edge Security | Remote, USA

Remote

Director, Cybersecurity - Remote or Hybrid in DC, NC and MN

Remote

Tax Preparer (No Experience Needed — Training Provided) Swift Express Tax & Consulting, LLC Remote

Remote

Monday.com → Make GPT Automation Engineer

Remote

Head of Marketing Operations Remote

Remote

Video Editor - Remote Projects for Creators & Brands

Remote

**Experienced Customer Service Representative – Delivering Exceptional Experiences for blithequark Clients**

Remote

Entry Level Data Entry Clerk for Remote CVS Data Entry Jobs at Blithequark with No Prior Experience Required for Career Growth and Development

Remote

Experienced Pharmacy Customer Service Associate – Full Time Remote Data Entry Opportunity with Competitive Hourly Rate

Remote

**Experienced Customer Service Representative – Healthcare and Insurance Industry**

Remote

Experienced Data Preparation Technician – Remote Full-Time Opportunity for Administrative Support and Data Entry Expertise at arenaflex

Remote

Customer Service Representative, Overnights - Weekends Included

Remote
← Back to Home