SOC 2 Associate Manager - LATAM

<p style="line-height: 1;"><span data-teams="true"><em>*This is a fully remote position and is only available for people located in LATAM*</em></span></p> <p style="line-height: 1;"><span data-teams="true">Insight Assurance is a&nbsp;<strong>global audit firm</strong> on a mission to transform how organizations achieve cybersecurity and compliance. Founded by <strong>former Big 4 (EY)</strong> professionals, we deliver <strong>next-generation audit services</strong> across <strong>SOC 2, ISO 27001, PCI DSS (QSA), HITRUST, CMMC (C3PAO), and FedRAMP (3PAO)</strong> frameworks.<br><br>We’re not your traditional audit firm — we’re <strong>tech-enabled</strong>, leveraging <strong>compliance automation and advanced collaboration tools</strong> to make audits faster, smarter, and more impactful for our clients.<br><br>Recognized on the <strong>Inc. 5000</strong> and <strong>Fast 50</strong> lists, Insight Assurance is one of the <strong>fastest-growing global audit firms</strong>, with <strong>170+ professionals</strong> supporting <strong>nearly 2,000 clients</strong> across the <strong>Americas, EMEA, and APAC</strong>.</span></p> <p style="line-height: 1;">&nbsp;</p> <p style="line-height: 1;"><strong>JOB PURPOSE</strong></p> <p style="line-height: 1;">The role of Manager includes the execution of client engagements and internal activities related to SOC 1, SOC 2, and SOC 3 examinations, HIPAA assessments, and external audits of other security and privacy frameworks/standards.</p> <p style="line-height: 1;">&nbsp;</p> <p style="line-height: 1;"><strong>DUTIES AND RESPONSIBILITIES</strong></p> <p style="line-height: 1;">1. Auditing services related to security, compliance, and attestation services.</p> <p style="line-height: 1;">2. Executes the day-to-day activities of IT audit engagements (SOC 1, SOC 2, SOC 3, SOC for cybersecurity)&nbsp;</p> <p style="line-height: 1;">3. Evaluate the design and effectiveness of technology controls.</p> <p style="line-height: 1;">4. Identifies and communicates IT audit findings to management.</p> <p style="line-height: 1;">5. Help identify performance improvement opportunities for assigned clients.</p> <p style="line-height: 1;">6. Communicate effectively with the clients and team members.</p> <p style="line-height: 1;">7. Participate in client meetings and foster client relationships through proactive communication.</p> <p style="line-height: 1;">8. Supervise and provide performance management for IT audit staff working on assigned engagements.</p> <p style="line-height: 1;">9. Provide weekly status reports to management.</p> <p style="line-height: 1;">10. Proactively communicate to management regarding any potential issues</p> <p style="line-height: 1;">11. Train staff in the IT audit team</p> <p style="line-height: 1;">&nbsp;</p> <p style="line-height: 1;"><strong>SKILLS</strong></p> <ul> <li>Excellent oral and written communication skills.</li> <li>Ability to work individually as well as collaboratively.</li> <li>A high degree of motivation.</li> <li>Bilingual in English.</li> </ul> <p style="line-height: 1;">&nbsp;</p> <p style="line-height: 1;"><strong>EDUCATION</strong></p> <p style="line-height: 1;">Bachelor’s degree in accounting, business, cyber security, or management information systems.</p> <p style="line-height: 1;">&nbsp;</p> <p style="line-height: 1;"><strong>EXPERIENCE</strong></p> <ul> <li>At least 4 years of experience performing IT audit engagements at a Big 4 or other audit/consulting firm.</li> <li>Experience using GRC and compliance automation tools (Vanta, Drata, Secureframe) is a plus.</li> </ul> <p style="line-height: 1;">&nbsp;</p> <p style="line-height: 1;"><strong>TRAINING AND CERTIFICATIONS</strong></p> <p style="line-height: 1;">Candidates with an active or working towards CISA, CPA, CISSP, ISO27001 Lead Auditor, or PCI QSA certification.</p> <p style="line-height: 1;">&nbsp;</p> <p style="line-height: 1;">BENEFITS</p> <ul> <li style="line-height: 1;">Flexible Paid Time Off and paid holidays</li> <li style="line-height: 1;">Performance Bonuses</li> <li style="line-height: 1;">100% Remote</li> </ul> <p>&nbsp;</p> <p>&nbsp;</p> <p><span style="text-decoration: underline;"><strong>Privacy Notice CCPA</strong></span>:&nbsp;</p> <ul> <li style="font-style: italic;"><em>Insight Assurance shares your personal data/information with Greenhouse recruiting because this is the tool we use for the recruitment process. </em></li> <li style="font-style: italic;"><em>Insight Assurance does not sell personal data/information under any circumstances. </em></li> <li style="font-style: italic;"><em>You may exercise your rights under personal data protection legislation by reaching out to us via: <a href="mailto:HR@insightassurance.com">HR@insightassurance.com</a> or submit a request via mail at 400 N Tampa St. 15th Floor Suite 122, Tampa, FL 33602</em></li> </ul> <p><span style="text-decoration: underline;"><strong>Privacy Notice GDPR:</strong></span></p> <p class="x_MsoNormal"><em><span lang="EN-GB" data-olk-copy-source="MessageBody">This notice informs you about the categories of Personal Data/ Information and the Purpose and Scope of Processing Activities to be undertaken by Insight Assurance (we, us, our), under its job application and recruitment process.</span></em></p> <p class="x_MsoNormal"><em><span lang="EN-GB">We resort to Greenhouse.com as the platform that supports our recruitment process, and therefore your Personal Data/ Information will be Processed on this tool (hosted, shared with, cross-referenced, accessed by our team); we have in place contractual terms and the commitment of Greenhouse.com that ensures the Security and Confidentiality plus Purpose limitation with regards to the Processing of your Personal Data.</span></em></p> <p class="x_MsoNormal"><em><span lang="EN-GB">When you reply to one of your job postings, you voluntarily and freely submit your Personal Data to us; this, allied with the fact that the Processing by us (and over Greenhouse.com) of that Personal Data has the sole Purpose of validating your application and proceeding with the inherent scrutiny and decision, allows us to argue having Legitimate Interest as the applicable Legal Basis to undertake the Processing of your Personal Data under this scope.</span></em></p> <p class="x_MsoNormal"><em><span lang="EN-GB">We are a U.S. based company, hence some or all Personal Data pertaining to you will be hosted in the U.S.</span></em></p> <p class="x_MsoNormal"><em><span lang="EN-GB">The categories of Personal Data under Processing consist of:</span></em></p> <ul type="disc"> <li class="x_MsoListParagraph"><em><span lang="EN-GB">Identification</span></em></li> <li class="x_MsoListParagraph"><em><span lang="EN-GB">Contact</span></em></li> <li class="x_MsoListParagraph"><em><span lang="EN-GB">Education and Professional</span></em></li> <li class="x_MsoListParagraph"><em><span lang="EN-GB">Interview performance</span></em></li> <li class="x_MsoListParagraph"><em><span lang="EN-GB">Evaluation</span></em></li> </ul> <p class="x_MsoNormal"><em><span lang="EN-GB">You may exercise several Rights as determined under applicable Personal Data Protection legislation, in short:</span></em></p> <ul type="disc"> <li class="x_MsoListParagraph"><strong><em><span lang="EN-GB">Right of Access</span></em></strong><em><span lang="EN-GB">&nbsp;– meaning getting information about the Personal Data under Processing by us, except for the information you already know;</span></em></li> <li class="x_MsoListParagraph"><strong><em><span lang="EN-GB">Right of Erasure</span></em></strong><em><span lang="EN-GB">&nbsp;– you may ask for us to erase all Personal Data pertaining to you under Processing; this may imply you being excluded from the recruitment process, for without information we cannot proceed with it;</span></em></li> <li class="x_MsoListParagraph"><strong><em><span lang="EN-GB">Right of Opposition or Restriction of Processing</span></em></strong><em><span lang="EN-GB">&nbsp;– you may ask us to stop some Processing or restrict the Processing of some Personal Data, this may imply you being excluded from the recruitment process, at our sole discretion also for without information we cannot proceed with it;</span></em></li> <li class="x_MsoListParagraph"><strong><em><span lang="EN-GB">Rectification&nbsp;</span></em></strong><em><span lang="EN-GB">– you can rectify your Personal Data at anytime</span></em>&nbsp;</li> </ul> <p>&nbsp;</p>