SR SOC Assessment Consultant IRC297086

Description

POSITION SUMMARY

The Senior Consultant is a key member of Coalfire’s delivery team, responsible for assessing client security and
compliance programs against regulatory, industry, and best‑practice frameworks. This role requires deep
expertise in one or more cybersecurity frameworks, the ability to lead audits and assessments end‑to‑end, and
the skill to produce high‑quality, client‑ready deliverables.
The Senior Consultant works closely with Project Managers, Senior Managers/Directors, and other delivery team
members to manage project timelines, ensure quality, and achieve successful outcomes. In addition to executing
assessments, this role plays an important part in strengthening engagement methodologies, improving internal
processes, and mentoring Associates and Consultants.
The Senior Consultant evaluates the design and effectiveness of technical and non‑technical security controls
across the business lifecycle, frequently within cloud‑based environments. The Senior Consultant owns assigned
technical areas, conducts interviews and evidence review, and develops clear, defensible conclusions and
recommendations that enhance clients’ security posture.

Requirements

SKILLS

Essential:

• 3+ years of experience as an IT Consultant, IT Auditor, Business Analyst, or similar role, with at least 1
  year in a technical project lead capacity.
• Strong expertise in security frameworks and regulatory requirements such as SOC 2, ISO 27001, NIST,
  COBIT, HIPAA/HITECH, HITRUST, or PCI.
• Experience assessing environments hosted in cloud platforms such as AWS, Microsoft Azure, or Google Cloud Platform.
• Ability to evaluate the design and operating effectiveness of technology controls across the business lifecycle.
• Demonstrated ability to structure, lead, and deliver complex engagements successfully.
• Proven capability to assess a wide variety of technical environments while adhering to professional standards.
• Strong control interpretation and mapping skills.
• Excellent written and verbal communication skills with the ability to convey complex concepts succinctly and confidently.
• Strong consulting presence with the ability to advise, challenge, and collaborate effectively.
• Ability to quickly establish credibility, rapport, and trust with clients and internal stakeholders.
• Strong organizational and time‑management skills; able to manage competing priorities while maintaining quality.
• Willingness and ability to train, mentor, and review the work of junior staff.
• Strong meeting facilitation, public speaking, and executive‑level presentation skills.
• Analytical, inquisitive mindset with the ability to probe for meaningful insights.
• Diplomatic, open‑minded, and professional approach.
• Strong research skills and attention to detail.
• Flexible and adaptable, with the ability to adjust working hours as needed to effectively support a global client base.

REQUIRED CERTIFICATIONS

• CCSK (or ability to obtain within one month of hire)

PREFERRED CERTIFICATIONS

• At least one of the following information security certifications: CISSP, CISM, or ISO/IEC 27001 Lead
  Implementer
• At least one of the following audit certifications: CISA, GSNA, ISO/IEC 27001 Lead Auditor/Internal Auditor, IRCA ISMS Auditor, or CIA
• AWS Solutions Architect or other major cloud service provider certification

EDUCATION

• Bachelor’s degree (four-year college or university) or equivalent combination of education and work
  experience. Degree preferably in Information Systems, CIS, MIS or IT

Job responsibilities

ESSENTIAL RESPONSIBILITIES

• Lead security and compliance audits and assessments from planning through reporting, including audit
  plan development, evidence review, control evaluation, and client interviews.
• Maintain deep subject‑matter expertise in one or more cybersecurity frameworks and applicable regulatory requirements.
• Prepare, review, and approve high‑quality assessment and audit reports suitable for executive and stakeholder audiences.
• Manage assigned tasks, priorities, and project hours in collaboration with Project Managers to meet delivery and utilization targets.
• Ensure all deliverables meet Coalfire quality standards and are delivered on time.
• Proactively identify, escalate, and help resolve client and project risks or issues.
• Serve as a mentor to Associates and Consultants, providing guidance on assessment execution, technical review, and professional writing.
• Act as a primary client contact throughout the engagement and confidently interface with stakeholders at all organizational levels.
• Build and maintain strong, collaborative client relationships that drive trust and long‑term value.
• Continuously develop professionally, maintaining required certifications and up‑to‑date knowledge of industry standards and practices.
• Collaborate with Project Management, Quality Management, Sales, and Delivery teams to support customer satisfaction and delivery excellence.
• Identify potential upsell and cross‑sell opportunities and coordinate with sales leadership.
• Design audit programs that appropriately address regulatory objectives and the complexity of client environments.
• Lead technical and non‑technical walkthroughs and interviews to assess conformity to applicable frameworks and requirements.
• Evaluate security vulnerabilities and control effectiveness against relevant standards.
• Corroborate assessment conclusions through inquiry, observation, and evidence review, ensuring thorough and accurate documentation.
• Perform remote and offline inspection of client‑provided evidence, tracking follow‑ups and clarifications as needed.
• Educate clients on compliance requirements and interpret assessment results in a practical, business‑oriented manner.
• Apply Coalfire quality standards consistently across all work products.
• Provide thoughtful guidance on scope considerations and emerging risks to deliver additional client value.
• Develop clear findings and actionable recommendations that strengthen clients’ security and compliance posture.

WORK ENVIRONMENT / TRAVEL REQUIRED

• Standard office environment
• Travel 20%

What we offer

Exciting Projects: Come take your place at the forefront of digital transformation! With clients across all industries and sectors, we offer an opportunity to work on market-defining products using the latest technologies.

Collaborative Environment:Expand your skills by collaborating with a diverse team of highly talented people in an open, laidback environment — or even abroad in one of our global centers or client facilities!

Work-Life Balance:GlobalLogic prioritizes work-life balance, which is why we offer flexible work schedules.We offer you the best quality of work life so that you exceed the expectations of our clients, while achieving your professional and personal ambitions.

Professional Development:Our dedicated Learning & Development team regularly organizes English classes, professional certifications, and technical and soft skill trainings. We also offer the chance to travel internationally

Excellent Benefits:We provide our employees with competitive salaries, family medical insurance, extended paternity leave, annual performance bonuses, and referral bonuses.

About GlobalLogic

GlobalLogic, a Hitachi Group Company, is a trusted digital engineering partner to the world’s largest and most forward-thinking companies. Since 2000, we’ve been at the forefront of the digital revolution – helping create some of the most innovative and widely used digital products and experiences. Today we continue to collaborate with clients in transforming businesses and redefining industries through intelligent products, platforms, and services.