Note: The job is a remote job and is open to candidates in USA. Sensiba LLP is a purpose-driven organization committed to making a meaningful impact for clients, people, and communities. The Senior GRC Analyst I is responsible for ensuring client satisfaction and efficient execution of engagement plans, focusing on IT controls, security, and compliance across SOC 2 and SOC 1 engagements.
Responsibilities
- Knowledge of relevant regulations and industry standards (e.g., SSAE 18/SOC, HIPAA, ISO-27001, COSO, HITRUST, etc.) and best practices and methodologies to address these requirements
- Fundamental understanding of audit principles such as risk assessment, materiality, independence, and sufficiency of evidence - ability to apply these requirements to organizational internal control frameworks
- Understanding of technical concepts such as cyber security, virtualization, data center, cloud computing, and the like
- Ability to interpret/relay technical information at all levels of technical aptitude, including senior management. This includes written and oral communications
- Documentation skills are a must. Ability to articulate, write and present information in a clear and understandable manner and to meet the performance standard required for supporting our audit work
- Strong time management, project management and organizational skills with the ability to manage multiple priorities successfully within a deadline-driven environment
Skills
- Bachelor's degree required
- 3+ years of IT Audit experience or Audit experience
- Experience leading SOC 1 & SOC 2 audits
- Experience with controls reviews along with recommending, designing and advising on applicable IT controls
- Knowledge of relevant regulations and industry standards (e.g., SSAE 18/SOC, HIPAA, ISO-27001, COSO, HITRUST, etc.) and best practices and methodologies to address these requirements
- Fundamental understanding of audit principles such as risk assessment, materiality, independence, and sufficiency of evidence - ability to apply these requirements to organizational internal control frameworks
- Understanding of technical concepts such as cyber security, virtualization, data center, cloud computing, and the like
- Ability to interpret/relay technical information at all levels of technical aptitude, including senior management. This includes written and oral communications
- Documentation skills are a must. Ability to articulate, write and present information in a clear and understandable manner and to meet the performance standard required for supporting our audit work
- Strong time management, project management and organizational skills with the ability to manage multiple priorities successfully within a deadline-driven environment
- Bachelor's degree in MIS, IT or related field preferred
- Experience teaching, training, mentoring other staff members is preferred
- Relevant professional designation such as CISA, CISSP, CIPP, etc. is a plus
- Experience with SOC 2 readiness platforms (e.g., Drata, Vanta, etc.) is preferred
- Experience leading SOC 1s and developing SOC 1 controls around financial reporting and business processing
Benefits
- Comprehensive Health Coverage – Medical, dental, and vision.
- Retirement & Financial Planning Support – 401(k) with match, financial wellness programs.
- Generous Paid Time Off – Vacation, sick time, holidays, parental leave and volunteer days.
- Flexible Work Arrangements – Hybrid or remote options, flexible hours.
- Performance-Based Bonus – Recognition for your contributions through discretionary bonuses.
- Professional Development Opportunities – Tuition reimbursement, certifications, mentorship.
- Career Growth & Internal Mobility – Clear paths for advancement and role transitions.
- Inclusive & Supportive Culture – DEI initiatives, employee resource groups, wellness programs.
Company Overview