Copy of SOC 2 Associate Manager
This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for a SOC 2 Associate Manager based in Brazil.
This role is focused on leading and executing IT audit and compliance engagements across key cybersecurity and privacy frameworks, including SOC 1, SOC 2, SOC 3, and related assurance standards. You will work closely with clients to evaluate control environments, identify gaps, and ensure audit readiness while supporting continuous improvement in security and compliance maturity. The position combines hands-on audit execution with client-facing advisory responsibilities in a fast-paced, global environment. You will also contribute to team leadership by supervising junior auditors, reviewing deliverables, and supporting training activities. This is a highly impactful role where communication, technical audit expertise, and client relationship management are essential. It is ideal for an experienced IT audit professional looking to grow in a modern, tech-enabled assurance environment.
Accountabilities:
- Lead and execute IT audit engagements across SOC 1, SOC 2, SOC 3, and other security and privacy frameworks.
- Assess the design and effectiveness of IT and cybersecurity controls within client environments.
- Identify, document, and communicate audit findings and recommendations to client stakeholders and internal leadership.
- Participate in client meetings, maintaining strong relationships through proactive communication and engagement.
- Supervise and support IT audit staff, including performance management, guidance, and training.
- Provide regular project status updates and proactively escalate risks or issues to management.
- Contribute to identifying process improvements and performance optimization opportunities for clients.
- Ensure high-quality audit documentation and adherence to engagement standards and methodologies.
- Bachelor’s degree in Accounting, Business, Cybersecurity, Information Systems, or related field.
- Minimum 4 years of experience in IT audit, ideally within Big 4 or consulting/audit firms.
- Strong knowledge of SOC reporting standards and IT control frameworks.
- Experience evaluating technology controls and supporting compliance assessments.
- Excellent written and verbal communication skills, with the ability to interact with clients and stakeholders effectively.
- Proven ability to work independently and collaboratively in dynamic environments.
- Bilingual proficiency in English is required.
- Nice to have: experience with GRC and compliance automation tools (e.g., Vanta, Drata, Secureframe).
- Nice to have: certifications in progress or completed such as CISA, CPA, CISSP, ISO 27001 Lead Auditor, or PCI QSA.
- 100% remote work model, available within Latin America.
- Flexible paid time off and company holidays.
- Performance-based bonus structure.
- Opportunity to work with global clients across cybersecurity and compliance domains.
- Exposure to advanced audit methodologies and modern compliance automation tools.
- Career growth in a fast-scaling, tech-enabled audit environment.