Information Technology Auditor jobs in United States
cer-icon
Apply on Employer Site
company-logo

GreenHat Assurance · 7 hours ago

Information Technology Auditor

positionUnited States
timeFull-time
remoteRemote
seniorityEntry, Mid Level

GreenHat Assurance is a licensed CPA firm specializing in SOC 2 attestation engagements. They are hiring a full-time IT Auditor to support SOC 2 examinations from planning through report delivery, focusing on evaluating technology controls and contributing to high-quality reporting.

Accounting

Responsibilities

Plan and execute SOC 2 engagements (Type I and Type II), including timelines, request lists, and testing approaches
Perform walkthroughs of client processes and systems, documenting in a clear, audit-ready format
Assess control design and operating effectiveness across common SOC 2 domains (access, change management, incident response, SDLC, vendor risk, monitoring, etc.)
Execute disciplined sampling and evidence evaluation, including completeness and accuracy considerations for system-generated evidence
Analyze technical configurations and logs (where applicable), and translate technical details into clear audit documentation
Draft and refine workpapers that support conclusions, including narratives, test steps, results, and exceptions
Collaborate with clients (engineering, security, IT, compliance, leadership) to obtain evidence and resolve open items
Contribute to report preparation, including clear descriptions, issue summaries, and support for management responses when needed
Support internal quality reviews, responding to reviewer notes and improving documentation until it is publication-ready
Identify scoping risks early, such as subservice organization dependencies and boundary assumptions, and escalate appropriately

Qualification

IT auditIT controls assessmentCISA CertificationInformation security conceptsSOC 2 examinationsAnalytical abilityClear writingProfessional skepticismOrganization skillsCommunication skills

Required

Strong skills in IT audit and IT controls assessment and validation
Practical understanding of information security concepts and how controls work in modern environments
Strong analytical ability to evaluate evidence, trace data flows, and spot inconsistencies
Clear writing and communication, including the ability to document complex systems in a readable way
Strong organization skills (multiple clients, multiple deadlines, detail-heavy work)
CISA Certification

Preferred

Experience with SOC 2 examinations (or similar attestation and assurance work)
Familiarity with cloud and modern SaaS stacks (identity providers, CI/CD, logging, ticketing, endpoint management)
Exposure to related frameworks (ISO 27001, NIST, CIS, PCI, HIPAA) as context, not as a replacement for SOC 2
Certifications such as CISM, CISSP, CPA (or progress toward them)

Company

GreenHat Assurance

twitter
company-logo
GreenHat Assurance is a Licensed CPA Firm focused exclusively on SOC 2 attestation.
dateFounded in 2025
location
San Francisco , California , US
people-size2-10 employees
web-link
https://ghassurance.com

Funding

Current Stage
Early Stage
Company data provided by crunchbase