[Remote] Governance, Risk & Compliance Analyst III - SOC 2

Note: The job is a remote job and is open to candidates in USA. Sensiba LLP is a purpose-driven organization recognized as a Top Workplace USA, dedicated to making a meaningful impact for clients and communities. The GRC Analyst III - SOC 2 is responsible for ensuring client satisfaction through effective engagement execution, focusing on business processes and IT control auditing, while mentoring team members. Responsibilities • Knowledge of relevant regulations and industry standards (e.g., SSAE 18/SOC, HIPAA, ISO-27001, COSO, HITRUST, etc.) and best practices and methodologies to address these requirements • Knowledge of audit principles such as risk assessment, materiality, independence and sufficiency of evidence • Ability to apply these requirements to organizational internal control frameworks • Understanding of technical concepts such as cyber security, virtualization, data center, cloud computing, and the like • Ability to interpret/relay technical information to all levels of technical aptitude, including senior management. This includes written and oral communications • Documentation skills are a must. Ability to articulate, write and present information in a clear and understandable manner and to meet the re-performance standard required for supporting our audit work • Strong time management, project management and organizational skills with the ability to manage multiple priorities successfully within a deadline-driven environment • Strong interpersonal skills • Demonstrated ability to quickly understand and assimilate business processes • Conduct detailed audits of clients' business processes and IT controls, ensuring compliance with industry standards and regulations • Observe, review, document, and test key business process transactions, access controls, change management controls, operational and organizational controls, and automated controls for engagements • Review, document, evaluate and test application controls, particularly automated controls on a wide range of systems and software applications across a wide variety of client business processes • Evaluate clients' business, IT, and security risks, identifying areas of concern and recommending appropriate control measures and process improvements to mitigate risks • Assess security policies and procedures, reviewing risk management / risk assessment documentation, and controls of our clients’ business applications, networks, operating systems, and other components of their technology infrastructure • Support internal and external security assessments of new and existing services and infrastructure including operational, regulatory, and contractual requirements • Develop and nurture strong relationships with clients, gaining insight into their businesses, risks, and compliance requirements to tailor audit approaches effectively • Execute audit procedures efficiently and effectively, analyzing systems, processes, and controls to assess their adequacy and effectiveness in managing risks • Prepare comprehensive audit reports detailing findings, recommendations, and remediation plans, ensuring clear communication of audit results to clients • Develop a technical understanding of cyber security best practices in order to advise and audit clients on their security posture • Follow up on remediation progress or management responses • Provide guidance and mentoring to less experienced team members Skills • Bachelor's degree required • 2 + years of IT Audit experience or Audit experience • Experience performing SOC 1 and/or SOC 2 audits, and controls reviews along with recommending, designing and advising on applicable IT controls • Bachelor's degree in Accounting, Finance, MIS, IT or related field preferred • Experience conducting SOC 2 audits is preferred • Relevant professional designation such as CISA, CISSP, CIPP, etc. is a plus • Experience with SOC 2 readiness platforms (e.g., Drata, Vanta, etc.) is preferred Benefits • Comprehensive Health Coverage – Medical, dental, and vision. • Retirement & Financial Planning Support – 401(k) with match, financial wellness programs. • Generous Paid Time Off – Vacation, sick time, holidays, and volunteer days. • Flexible Work Arrangements – Hybrid or remote options, flexible hours. • Performance-Based Bonus – Recognition for your contributions through discretionary bonuses. • Professional Development Opportunities – Tuition reimbursement, certifications, mentorship. • Career Growth & Internal Mobility – Clear paths for advancement and role transitions. • Inclusive & Supportive Culture – DEI initiatives, employee resource groups, wellness programs. Company Overview • Accounting & Business Consulting It was founded in 1977, and is headquartered in Pleasanton, California, USA, with a workforce of 501-1000 employees. Its website is Company H1B Sponsorship • Sensiba LLP has a track record of offering H1B sponsorships, with 9 in 2025, 11 in 2024, 4 in 2023. Please note that this does not guarantee sponsorsh