Role Overview
We are seeking an experienced SOC Compliance & Audit Specialist to join our team at our Begumpet, Secunderabad office. This is an office-based role supporting a Global Support Centre that serves both US and Indian clients across multiple SOC (Systems & Organizational Controls) compliance frameworks. The successful candidate will serve as a subject matter expert, guiding clients through their compliance journeys—from designing control frameworks from the ground up, establishing evidence collection processes, and managing audit experiences, to maintaining continuous compliance. This is a hands-on position requiring deep expertise in SOC frameworks (SOC 1, SOC 2, SOC 3) and proficiency with the Scrut platform.
Key Responsibilities
1. SOC Audit Preparation & Client Guidance
- Lead organizations through SOC audit experiences (Type I & Type II), providing end to-end advisory across multiple frameworks
- Assess organizational readiness, identify gaps in existing controls, and create remediation roadmaps tailored to client requirements
- Educate internal stakeholders on SOC requirements, control objectives, and compliance best practices across different trust service principles
2. Ground-Up Systems & Controls Design
- Design and document SOC control frameworks from scratch, tailored to each client's
operational environment, business model, and risk profile
- Establish evidence collection processes using Scrut, creating templates, checklists, and governance structures for consistent documentation across trust service principles
- Define roles and responsibilities for evidence owners and ensure clear escalation protocols for control failures or non-conformances
3. Evidence Collection, Organization & Management
- Collate, organize, and validate SOC evidence using the Scrut platform, ensuring all audit trail requirements and control mappings are met
- Maintain evidence libraries across multiple control domains with version control, change tracking, and audit trail integrity
- Work with process owners and stakeholders to ensure evidence submission is timely, complete, and audit-ready
4. Audit Execution & Subject Matter Expertise
- Attend and actively drive internal and external audit calls, presenting controls, evidence, and test results with confidence as the subject matter expert
- Serve as the primary liaison between clients and external auditors, addressing audit inquiries, clarifications, and follow-ups promptly
- Manage audit timelines, track action items, and coordinate remediation efforts for identified control deficiencies or exceptions
5. Vulnerability & Control Remediation
- Support rapid closure of vulnerabilities, exceptions, and control gaps with a strict 1- day turnaround time (from receipt of report) for initial assessment and remediation planning
- Coordinate cross-functional teams to implement corrective actions, verify effective closure, and update evidence accordingly
- Document remediation evidence and update control testing matrices to reflect improvements and closure
6. Ongoing Compliance & Continuous Audit-Readiness
- Establish monthly evidence collection and control testing schedules to ensure continuous compliance between audit cycles
- Proactively monitor control performance, identify drift or degradation, and initiate corrective actions before formal audit cycles
- Maintain compliance calendars, track control testing renewals, and refresh evidence libraries regularly in Scrut
- Conduct quarterly compliance reviews with clients to assess control maturity, identify emerging risks, and plan for future audit scopes.
Experience
- 3+ years of hands-on experience in SOC compliance, audit, control design, or related compliance frameworks
- Proven track record guiding organizations through SOC audit cycles (at least 3+ client engagements)
- Hands-on proficiency with Scrut software for evidence management, control mapping, and audit automation
- Experience designing control frameworks and evidence collection systems from the ground up for SaaS, fintech, BPO, or support center organizations
- Strong understanding of SOC 1 Type II, SOC 2 Type I & II, SOC 3, and related audit scopes, testing methodologies, and reporting requirements
Technical Skills
- Advanced proficiency with Scrut platform—configuration, evidence linking, control mapping, audit workflows, and reporting
- Solid understanding of SOC trust service principles and criteria: security, availability, processing integrity, confidentiality, and privacy
- Proficiency with Excel/Google Sheets for control matrices, testing documentation, and compliance dashboards
- Familiarity with other compliance frameworks (ISO 27001, GDPR, HIPAA, NIST, SOX) is highly valued
Certifications (Preferred but not mandatory)
- CISSP (Certified Information Systems Security Professional)
- CISA (Certified Information Systems Auditor)
- CPA or CA (Chartered Accountant) with audit experience
- SOC auditor certification or equivalent audit training
- AICPA SOC credential or compliance specialist designation
Soft Skills & Personal Attributes
- Excellent communication skills—ability to explain complex compliance requirements and control logic to non-technical stakeholders
- Strong project management and organizational abilities—managing multiple client engagements and audit cycles simultaneously
- Detail-oriented and meticulous—ensuring all compliance documentation is accurate, complete, and audit-ready at all times
- Proactive problem-solver—identifying compliance gaps and risks proactively, and recommending data-driven remediation strategies
- Ability to work under pressure—managing tight deadlines and delivering results on the 1-day vulnerability remediation turnaround
- Strong interpersonal skills—building trust with clients, auditors, and cross-functional teams as a credible subject matter expert
Why This Role?
This is an excellent opportunity for a compliance specialist seeking to make a direct, visible impact on organizations' security and compliance posture. You will work office-based in our Begumpet, Secunderabad location, collaborating closely with a Global Support Centre team serving both US and Indian clients. You'll be trusted to take the lead on client engagements, build SOC compliance systems from the ground up, and serve as an authoritative advisor across multiple trust service frameworks. The role offers strong growth potential, exposure to diverse industries and organizational structures, and the satisfaction of seeing clients successfully achieve and maintain SOC audit certifications.
Pay: ₹800,000.00 - ₹1,400,000.00 per year
Benefits:
- Flexible schedule
- Paid sick time
- Paid time off
- Provident Fund
Work Location: In person