-
-
TYPE OF WORK
Full Time
-
-
SALARY
750
-
-
HOURS PER WEEK
35
-
-
DATE UPDATED
Jan 14, 2026
We are seeking an experienced Security Auditor & Cybersecurity Consultant to take ownership of our security, compliance, and audit posture across the organization. This role is responsible for SOC 2 compliance, cloud security oversight (Azure & AWS), Microsoft 365 security, and client security questionnaires, while continuously strengthening our overall cybersecurity program.
This individual will act as the primary security owner, working directly with executive leadership, engineering, and operations to ensure our systems, data, and processes meet modern security and compliance standards.
Key Responsibilities
SOC 2 & Compliance Ownership
• Own and manage the SOC 2 program end-to-end (Type I and Type II)
• Maintain and improve security controls, policies, and evidence collection
• Coordinate audits and act as the primary liaison with external auditors
• Identify control gaps and drive remediation efforts
• Ensure ongoing compliance—not just point-in-time audit readiness
Cloud Security (Azure & AWS)
• Oversee security posture for Azure and AWS environments
• Review and monitor cloud logs, alerts, and security findings
• Validate identity, access management, networking, and encryption configurations
• Recommend improvements for cloud security architecture and monitoring
• Ensure logging, alerting, and retention meet compliance and security standards
Microsoft 365 & Identity Security
• Own security for Microsoft 365, including:
• Azure AD / Entra ID
• Conditional Access policies
• MFA and identity governance
•
• Review and harden access controls and security configurations
• Monitor security logs and alerts related to identity and collaboration tools
Cybersecurity Program Management
• Serve as the internal cybersecurity authority
• Assess and improve:
• Access controls
• I
• Vulnerability management
• Security monitoring and logging
• Provide risk assessments and prioritized remediation plans
• Help guide secure architecture decisions for new systems and products
Client Security Questionnaires & Due Diligence
• Take full ownership of client security questionnaires
• Respond to vendor risk assessments, security reviews, and due-diligence requests
• Translate technical security controls into clear, client-friendly responses
• Maintain a consistent, defensible security narrative across all responses
• Work with internal teams to address client-identified security gaps
Advisory & Leadership Collaboration
• Advise leadership on security risks, compliance posture, and improvement opportunities
• Partner with engineering and IT to ensure security is embedded into workflows
• Help establish long-term security strategy aligned with business growth
Required Experience & Skills
• 5+ years in security auditing, cybersecurity, or compliance consulting
• Hands-on experience with SOC 2 (ownership preferred)
• Strong knowledge of Azure and AWS security best practices
• Experience securing Microsoft 365 / Entra ID
• Familiarity with cloud logging, monitoring, and alerting
• Experience responding to security questionnaires and audits
• Ability to communicate complex security concepts to non-technical stakeholders
• Strong documentation and policy-writing skills
Preferred Qualifications
• SOC 2, CISSP, CISA, CCSP, or similar certifications
• Experience supporting SaaS or cloud-hosted platforms
• Familiarity with regulatory and compliance frameworks beyond SOC 2
• Experience working directly with auditors and enterprise clients
What This Role Is
• A security owner, not just an advisor
• A blend of hands-on technical review and audit/compliance leadership
• A trusted partner to leadership and engineering
What This Role Is Not
• Not a junior analyst role
• Not purely theoretical or checklist-based
• Not limited to a single cloud or toolset
