Information Security Auditor & Standards Lead jobs in United States
cer-icon
Apply on Employer Site
company-logo

Bridgesoft · 8 hours ago

Information Security Auditor & Standards Lead

positionWilmington, DE
timeFull-time
remoteOnsite
senioritySenior Level
date5+ years exp

Bridgesoft is seeking a highly experienced Information Security Auditor & Standards Lead with deep, hands-on knowledge of global information security standards and best practices. The individual will independently lead security governance, audit, and compliance activities across frameworks such as ISO and SOC 2, and continuously enhance the organization’s security and compliance maturity.

ConsultingInformation TechnologyIT ManagementSoftware
check
Growth Opportunities
check
H1B Sponsor Likelynote

Responsibilities

Act as Subject Matter Expert (SME) for ISO 27001, SOC / SOC 2, NIST, and CIS frameworks
Interpret security standards and translate requirements into auditable controls
Ensure controls are designed, implemented, and maintained effectively
Provide guidance on mandatory requirements versus best practices
Plan and manage ISO and SOC audits end-to-end
Conduct internal audits and ongoing compliance assessments
Serve as primary point of contact for auditors and certification bodies
Track audit findings, non-conformities, and corrective actions to closure
Own and maintain the Information Security Management System (ISMS)
Maintain risk assessments, risk treatment plans, and Statement of Applicability (SoA)
Develop, review, and enforce security policies, standards, and procedures
Provide standards-driven guidance for new systems, applications, and infrastructure
Review new implementations for compliance alignment
Advise on control selection, design, and evidence requirements
Ensure new implementations are audit-ready by design
Provide compliance guidance to Security, Network, IT, Cloud, and HR teams
Identify gaps and drive continuous improvement initiatives
Support management reviews and executive-level reporting

Qualification

ISO 27001SOC 2Information Security AuditingNISTCIS frameworksCommunicationDocumentation skills

Required

5– years of experience in Information Security Auditing / GRC
Strong hands-on experience with ISO and SOC / SOC audits
Strong understanding of security principles and control frameworks
Excellent communication and documentation skills

Company

Bridgesoft

twittertwittertwitter
company-logo
Bridgesoft is an IT consulting company that provides java development and testing solutions for information security management.
dateFounded in 2013
location
Wilmington, Delaware, USA
people-size51-200 employees
web-link
https://bridgesoft.com/

H1B Sponsorship

Bridgesoft has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (6)
2024 (3)
2023 (2)
2022 (2)

Funding

Current Stage
Growth Stage
Company data provided by crunchbase