[Remote] Governance, Risk & Compliance Analyst III - SOC 2

Note: The job is a remote job and is open to candidates in USA. Sensiba LLP is a purpose-driven organization recognized as a Top Workplace USA, dedicated to making a meaningful impact for clients and communities. The GRC Analyst III - SOC 2 is responsible for ensuring client satisfaction through effective engagement execution, focusing on business processes and IT control auditing, while mentoring team members.

Responsibilities

• Knowledge of relevant regulations and industry standards (e.g., SSAE 18/SOC, HIPAA, ISO-27001, COSO, HITRUST, etc.) and best practices and methodologies to address these requirements
• Knowledge of audit principles such as risk assessment, materiality, independence and sufficiency of evidence
• Ability to apply these requirements to organizational internal control frameworks
• Understanding of technical concepts such as cyber security, virtualization, data center, cloud computing, and the like
• Ability to interpret/relay technical information to all levels of technical aptitude, including senior management. This includes written and oral communications
• Documentation skills are a must. Ability to articulate, write and present information in a clear and understandable manner and to meet the re-performance standard required for supporting our audit work
• Strong time management, project management and organizational skills with the ability to manage multiple priorities successfully within a deadline-driven environment
• Strong interpersonal skills
• Demonstrated ability to quickly understand and assimilate business processes
• Conduct detailed audits of clients' business processes and IT controls, ensuring compliance with industry standards and regulations
• Observe, review, document, and test key business process transactions, access controls, change management controls, operational and organizational controls, and automated controls for engagements
• Review, document, evaluate and test application controls, particularly automated controls on a wide range of systems and software applications across a wide variety of client business processes
• Evaluate clients' business, IT, and security risks, identifying areas of concern and recommending appropriate control measures and process improvements to mitigate risks
• Assess security policies and procedures, reviewing risk management / risk assessment documentation, and controls of our clients’ business applications, networks, operating systems, and other components of their technology infrastructure
• Support internal and external security assessments of new and existing services and infrastructure including operational, regulatory, and contractual requirements
• Develop and nurture strong relationships with clients, gaining insight into their businesses, risks, and compliance requirements to tailor audit approaches effectively
• Execute audit procedures efficiently and effectively, analyzing systems, processes, and controls to assess their adequacy and effectiveness in managing risks
• Prepare comprehensive audit reports detailing findings, recommendations, and remediation plans, ensuring clear communication of audit results to clients
• Develop a technical understanding of cyber security best practices in order to advise and audit clients on their security posture
• Follow up on remediation progress or management responses
• Provide guidance and mentoring to less experienced team members

Skills

• Bachelor's degree required
• 2 + years of IT Audit experience or Audit experience
• Experience performing SOC 1 and/or SOC 2 audits, and controls reviews along with recommending, designing and advising on applicable IT controls
• Bachelor's degree in Accounting, Finance, MIS, IT or related field preferred
• Experience conducting SOC 2 audits is preferred
• Relevant professional designation such as CISA, CISSP, CIPP, etc. is a plus
• Experience with SOC 2 readiness platforms (e.g., Drata, Vanta, etc.) is preferred

Benefits

• Comprehensive Health Coverage – Medical, dental, and vision.
• Retirement & Financial Planning Support – 401(k) with match, financial wellness programs.
• Generous Paid Time Off – Vacation, sick time, holidays, and volunteer days.
• Flexible Work Arrangements – Hybrid or remote options, flexible hours.
• Performance-Based Bonus – Recognition for your contributions through discretionary bonuses.
• Professional Development Opportunities – Tuition reimbursement, certifications, mentorship.
• Career Growth & Internal Mobility – Clear paths for advancement and role transitions.
• Inclusive & Supportive Culture – DEI initiatives, employee resource groups, wellness programs.

Company Overview

• Accounting & Business Consulting It was founded in 1977, and is headquartered in Pleasanton, California, USA, with a workforce of 501-1000 employees. Its website is http://www.sensiba.com.

Company H1B Sponsorship

• Sensiba LLP has a track record of offering H1B sponsorships, with 9 in 2025, 11 in 2024, 4 in 2023. Please note that this does not guarantee sponsorship for this specific role.

Apply tot his job Apply To this Job