SOC 2 Compliance Consultant (Freelance)

SOC 2 Compliance Consultant (Freelance | Project-Based)

Location: Delhi NCR

Job Summary:

We are hiring an experienced SOC 2 Compliance Consultant (Freelancer) to support SOC 2 Type I / Type II readiness and audit preparation.

This is a project-based, hands-on role requiring direct involvement in control implementation, audit evidence preparation, and coordination with internal teams and external CPA auditors.

Key Responsibilities

• Conduct SOC 2 readiness assessment and gap analysis

• Define SOC 2 audit scope and map controls to Trust Services Criteria (TSC)

• Design and implement IT General Controls (ITGC)

• Develop and enforce policies:

o Access control (IAM, MFA, least privilege)

o Incident response

o Change management / SDLC

• Establish audit-ready evidence collection framework

• Support SOC 2 Type I / Type II audit with external CPA firm

• Drive remediation of audit findings and control gaps

Required Experience

• 3–10 years in IT Audit / GRC / Risk Advisory / InfoSec Compliance

• Proven hands-on experience with:

o SOC 2 (Type I / Type II)

o SSAE 18 framework

o IT General Controls (ITGC)

• Experience working with external auditor's / CPA firms

• Strong understanding of:

o SOC 2 Trust Services Criteria

o Control testing and audit evidence

• Working knowledge of cloud environments (AWS / Azure / GCP)

Good to Have (Strong Preference)

• Experience with ISO 27001 / NIST frameworks

• Background in SaaS / fintech / cloud-based companies

• Familiarity with tools like Vanta, Drata, ServiceNow GRC

• Prior experience with Big 4 firms (Deloitte / PwC / EY / KPMG)

Email - [Confidential Information]