SoC Analyst

Skills

Job Specifications

SoC Analyst Location: Alexandria, Virginia Duration: Full time

Must have active Secret / Tier 5 Secret Security Clearance or higher.

SOC 1 Audit Readiness outlines contractor responsibilities for supporting partner and customer onboarding as well as ensuring SOC 1 audit preparedness in compliance with DoD FIAR standards. The contractor coordinates onboarding activities, maintains audit documentation, and supports continuous audit readiness and examination processes.

Contractor roles and coordination: The contractor manages end-to-end partner onboarding, customer communications, scheduling, technical meetings, and documentation to support SOC 1 audits.

Audit support documentation: Creation and maintenance of Compliance Audit Support Plans and Assertion Packages are required to facilitate federal compliance audits and achieve audit readiness per DoD FIAR methodology.

Data provisioning and audit reporting: The contractor provides transaction data, system logs, and reports to support FIAR activities, SSAE 18 reports, financial audits, and mandated milestones for auditable financial statements.

SSAE 18 report generation: Responsibilities include producing SSAE 18 reports covering a nine-month period, issuing bridge letters by early October, mapping Complementary User Entity Controls (CUECs), monitoring sub-service organizations, and meeting interim IPA assessment milestones.

System description and control mapping: The contractor identifies and links system inputs, edit checks, interfaces, and outputs to internal control objectives and Independent Public Accountant (IPA) test procedures as required by SSAE 18 sections.

Audit readiness and corrective actions: Support includes improving internal controls, assisting with OMB A-123, FISCAM, and RMF audits, responding to data calls, evaluating Notifications of Findings (NOFs), recommending and tracking Corrective Action Plans (CAPs).

Continuous coordination and reporting: The contractor prepares Assertion Packages, recommends control improvements, coordinates with the Product Manager, provides real-time compliance information, and delivers weekly f status reports and meeting participation.

Examination support: During audits, the contractor provides materials and personnel to deliver digital artifacts and support IPA assessments of control design and operating effectiveness according to SSAE 18, GAO FISCAM, GAGAS, and FAM standards.

Security and training requirements: Contractor personnel must comply with NIST security policies and have documented training in FIAR principles, FISCAM auditing, SSAE 18 standards, and OUSD(C) FIAR Directorate requirements.

About the Company

At Conviso, we empower both government and commercial clients by delivering tailored professional services that drive success and help them overcome unique business challenges. With technology as a key enabler, we transform objectives into achievements. As a diversified provider of IT and management consulting solutions, we specialize in building and maintaining lasting solutions that meet the ever-evolving needs of our clients. Whether supporting federal agencies or commercial enterprises, Conviso is committed to excellence... Know more

Related Jobs

Company Name

Essentials

Job Title

Analyst, IT Goverance, Risk and Compliance

United states

Remote

Full Time

05-12-2025

Company Name

The Planet Group

Job Title

Information Security Analyst

United states

Remote

Freelance

10-11-2025

Company Name

Horizon3.ai

Job Title

Senior Compliance Analyst

United states

Remote

Full Time

01-11-2025

Company Name

Cox Automotive

Job Title

IT Audit Analyst I

Conley, United states

On site

Full Time

24-10-2025