Security Compliance & Trust Certifications Lead jobs in United States
cer-icon
Apply on Employer Site
company-logo

Mastech Digital · 1 week ago

Security Compliance & Trust Certifications Lead

positionUnited States
timeContract
remoteRemote
senioritySenior Level
date7+ years exp

Mastech Digital is seeking a Security Compliance & Trust Certifications Lead to oversee the delivery of SOC 2 Type II and ISO/IEC 27001:2022 certifications. The role involves defining certification scope, implementing control designs, and ensuring audit readiness while establishing a scalable Information Security Management System (ISMS).

Information Technology
check
Growth Opportunities
check
H1B Sponsor Likelynote
Hiring Manager
vivek shrivastava
linkedin

Responsibilities

Lead end-to-end delivery of SOC 2 Type II and ISO/IEC 27001:2022 certifications
Define certification scope, system boundaries, and control applicability
Translate business operations and technical environments into audit-ready control narratives
Map existing security and operational controls to SOC 2 and ISO 27001 requirements
Identify control gaps and implement pragmatic remediation plans
Ensure controls align with modern SaaS and cloud-native environments
Design scalable evidence collection workflows and continuous monitoring processes
Implement lightweight tooling or automation for ongoing evidence capture
Prepare audit artifacts, walkthrough materials, and management responses
Serve as the primary liaison with external auditors and assessors
Establish and operationalize a scalable Information Security Management System (ISMS)
Define and implement:
Risk assessment and risk quantification methodology
Policy and standards framework
Management review cadence

Qualification

SOC 2 certificationISO 27001 certificationSecurity complianceGRC platformsCloud security controlsRisk assessment methodologiesAudit readinessCollaboration with executivesTechnical documentation

Required

7+ years of experience in security compliance, GRC, audit readiness, or related fields
Proven hands-on delivery of SOC 2 and ISO 27001 certification programs
Experience in fast-growing SaaS or consumer technology companies
Strong ability to translate technical environments into audit-grade documentation and narratives
Familiarity with GRC platforms such as VISO Trust, Vanta, Drata, or similar
Solid understanding of cloud security controls and modern SaaS architectures
Experience with risk assessment and risk quantification methodologies

Preferred

Background in Big 4 or top-tier advisory firms (PwC, Deloitte, EY, KPMG)
Experience with AWS, GCP, or Azure cloud environments
Proven ability to partner directly with CISOs and executive leadership teams

Company

Mastech Digital

twittertwittertwitter
Glassdoor4.1
company-logo
Mastech Digital provides IT associates in digital and mainstream technologies, Digital Transformation Services around Salesforce.com and SAP
dateFounded in 1986
location
Pittsburgh, Pennsylvania, USA
people-size1001-5000 employees
web-link
http://www.mastechdigital.com/

H1B Sponsorship

Mastech Digital has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (399)
2024 (496)
2023 (540)
2022 (947)
2021 (681)
2020 (751)

Funding

Current Stage
Public Company
Total Funding
unknown
2008-09-26IPO

Leadership Team

leader-logo
Ashok Trivedi
Co-Founder & Co-Chairman

Recent News

PR Newswire
Mastech Digital Reports Third Quarter 2025 Results
2025-11-13
PR Newswire
Mastech Digital to Discuss Third Quarter Financial Results on November 12, 2025
2025-11-03
PR Newswire
Mastech Digital Reports 2% Sequential Revenue Growth for the Second Quarter of 2025
2025-08-13
Company data provided by crunchbase