ZipRecruiter

Log In

2

Remote Soc 2 Analyst Jobs (NOW HIRING)

OneStudyTeam

Security Compliance Manager

OR · Remote

$140K - $170K/yr

... SOC 2 certification efforts and ongoing maintenance activities. * Strong competency in gap analysis ... This is a remote position with less than 10% travel requirements. Occasional planned travel may be ...

InstantServe LLC

SOC Information Security Analyst

Security Operations Center (SOC) Information Security Analyst Location: 100% Remote We are seeking ... Required Qualifications * 2+ years of experience as a SOC Analyst or Information Security Analyst.

Benepass

Senior GRC Analyst

Traditional one-size-fits-all benefits packages no longer cut it in today's hybrid and remote-first ... Support SOC 2, ISO 27001, and HITRUST readiness, audit preparation, evidence collection, auditor ...

Field Materials

$111K - $137K/yr

... remote-first company ... Collect up-to-date audit evidence and own SOC 2 IT controls. * SaaS Administration: Own the day-to ...

CompanyCam

Security & Compliance Analyst

$110K - $125K/yr

Own our NIST CSF 2.0 and SOC 2 Type II framework alignment , mapping controls efficiently across ... Strong analytical skills , with the ability to take raw vulnerability data and turn it into ...

NetBrain

Senior IT Security Engineer

OR · Remote

$130K - $155K/yr

... SOC 2 Type II attestation initiatives end-to-end - from initial gap analysis and control design ... Though this is a remote position, must be able to work Eastern Time Zone business hours What We ...

Parachute Health

Application Engineer

New York, NY · Remote

$80K - $120K/yr

Automate compliance evidence collection and control validation across SOC 2, HITRUST CSF, HITRUST ... We are remote-first with a dedicated NYC office and reimbursement options for co-working spaces.

Arctiq

SOC Analyst

Nashville, TN · Remote

We are hiring multiple SOC Analysts at the Tier 1 and Tier 2 levels to staff our Day, Swing, and ... Location: Remote candidates across North America will be considered, with preference given to ...

NetBrain

Senior IT Security Engineer

$130K - $155K/yr

... SOC 2 Type II attestation initiatives end-to-end - from initial gap analysis and control design ... Though this is a remote position, must be able to work Eastern Time Zone business hours What We ...

OneStudyTeam

Security Compliance Manager

$140K - $170K/yr

... SOC 2 certification efforts and ongoing maintenance activities. * Strong competency in gap analysis ... This is a remote position with less than 10% travel requirements. Occasional planned travel may be ...

OneStudyTeam

Security Compliance Manager

Boston, MA · Remote

$140K - $170K/yr

... SOC 2 certification efforts and ongoing maintenance activities. * Strong competency in gap analysis ... This is a remote position with less than 10% travel requirements. Occasional planned travel may be ...

SoDA

InfoSec Manager

Manhattan, NY · Remote

Owning and running the company's SOC 2 program and broader security compliance initiatives ... Fully remote role with a high level of ownership and autonomy * You'll own security rather than ...

next page

Showing results 1-20

All JobsRemote Soc 2 Analyst Jobs

Remote Soc 2 Analyst information

See salary details

$32K

$84.2K

$133.5K

How much do remote soc 2 analyst jobs pay per year?

As of Jun 12, 2026, the average yearly pay for remote soc 2 analyst in the United States is $84,207.00, according to ZipRecruiter salary data. Most workers in this role earn between $65,000.00 and $98,500.00 per year, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as a Remote SOC 2 Analyst, and why are they important?

To excel as a Remote SOC 2 Analyst, you need a solid understanding of information security, risk assessment, and compliance frameworks, typically supported by a degree in information security or related fields. Familiarity with tools like GRC platforms, audit management systems, and certifications such as CISA or CISSP are often required. Strong analytical thinking, attention to detail, and effective communication are vital soft skills for interpreting controls and collaborating with clients remotely. These skills ensure accurate assessments, maintain regulatory compliance, and enable efficient communication in a distributed work environment.

What are some common challenges faced by Remote SOC 2 Analysts when working with distributed teams?

Remote SOC 2 Analysts often face challenges related to communication and collaboration, particularly when coordinating with IT, security, and compliance teams across different locations and time zones. Ensuring consistent documentation and maintaining up-to-date evidence for audits can require proactive organization and regular virtual check-ins. Leveraging collaboration tools and establishing clear processes helps streamline workflows and ensures everyone stays aligned on compliance tasks, despite the physical distance.

What is a Remote SOC 2 Analyst?

A Remote SOC 2 Analyst is a cybersecurity professional who works remotely to help organizations achieve and maintain SOC 2 compliance. SOC 2 (Service Organization Control 2) is a set of standards designed to ensure service providers securely manage data to protect the privacy and interests of their clients. The analyst assesses an organization's security controls, policies, and procedures, identifies gaps, and recommends improvements. They also assist with preparing for SOC 2 audits, managing documentation, and ensuring that security practices align with SOC 2 requirements, all while working from a remote location.

What is the difference between Remote Soc 2 Analyst vs Remote Security Auditor?

AspectRemote Soc 2 AnalystRemote Security Auditor
CertificationsSOC 2, CISSP, CISACISA, CISSP, ISO 27001 Lead Auditor
Work EnvironmentRemote, client-facing, compliance-focusedRemote or onsite, audit and assessment-based
Industry UsageTech, finance, healthcareVarious industries, including finance and healthcare

Remote Soc 2 Analysts primarily focus on preparing organizations for SOC 2 compliance, ensuring controls meet standards. Remote Security Auditors conduct comprehensive evaluations of security controls across various frameworks. While both roles require similar certifications and often work remotely, Soc 2 Analysts specialize in SOC 2 reports, whereas Security Auditors have a broader scope including multiple standards.

More about Remote Soc 2 Analyst jobs
What cities are hiring for Remote Soc 2 Analyst jobs? Cities with the most Remote Soc 2 Analyst job openings:
What are the most commonly searched types of Soc 2 Analyst jobs? The most popular types of Soc 2 Analyst jobs are:
What states have the most Remote Soc 2 Analyst jobs? States with the most job openings for Remote Soc 2 Analyst jobs include:
What job categories do people searching Remote Soc 2 Analyst jobs look for? The top searched job categories for Remote Soc 2 Analyst jobs are:
Remote Soc 2 Analyst jobs near you
Infographic showing various Remote Soc 2 Analyst job openings in the United States as of June 2026, with employment types broken down into 84% Full Time, 11% Part Time, and 5% Contract. Highlights an 100% Remote job distribution, with an average salary of $84,207 per year, or $40.5 per hour.

Security Compliance Manager

OneStudyTeam

OR • Remote

$140K - $170K/yr

Other

Posted 6 days ago

Job description

The Security Compliance Manager leads the organization's security compliance and assurance efforts-ensuring we meet and maintain certification requirements (e.g., ISO 27001, SOC 2) and always remain audit-ready. This role translates security control requirements into actionable work across teams, drives evidence collection and remediation, and strengthens risk management practices to enable growth in regulated environments.

What You'll Be Working On
  • Lead security certification & audit readiness (ISO 27001 / SOC 2): Drive quarterly ISO control requirements, manage ISO surveillance audits, lead SOC 2 examination readiness, and oversee ongoing maintenance activities once achieved.
  • Operate the ISMS controls program: Manage internal ISMS control reviews, coordinate remediation and corrective actions, and ensure controls remain effective and scalable as the organization changes.
  • Evidence management & auditor response: Prepare for internal and external audits by organizing requests, gathering evidence, maintaining audit artifacts, and authoring clear, consistent responses to auditors.
  • Risk management program execution: Recommend and implement improvements to the information security risk management program; develop and maintain the risk register, risk ownership, and workflows for tracking remediation plans to closure.
  • Metrics, reporting, and stakeholder enablement: Partner with Security leadership to define and report KRIs/KPIs for the information security program; support consistent responses to customer security audits and questionnaires aligned to program commitments.
  • Manage periodic reviews and updates of security policies and procedures to ensure alignment with certifications, business needs, and regulatory expectations.  
  • Partner with an outsourced/internal audit function to validate control performance and drive continuous improvement.  
  • Support cross-functional education and adoption of security requirements by translating compliance language into clear tasks, owners, and acceptance criteria.
What You Bring to OneStudyTeam
  • Required: Experience leading a successful ISO 27001 or SOC 2 certification effort.
  • Required: 5+ years in a dedicated information security role in a regulated environment (e.g., HIPAA, GLBA, PCI).
  • Preferred: Security certification such as CISA, CISM, CISSP (or similar).
  • Demonstrated ability to lead ISO 27001 and/or SOC 2 certification efforts and ongoing maintenance activities.
  • Strong competency in gap analysis and risk assessment methodologies; able to translate results into prioritized remediation plans.
  • Working knowledge of security policy, procedure, and enforcement across key domains: access control, data classification, change management, asset management, BCDR, incident response, vulnerability management, secure SDLC, source control, endpoint protection.
  • Ability to translate security/compliance requirements into actionable work for Engineering/IT/Operations (tickets, owners, acceptance criteria, evidence).
  • Strong written and verbal communication-able to interface with all levels of the organization and produce high-quality audit-ready documentation.
  • Technical foundation sufficient to understand high-level concepts related to public cloud (AWS/GCP/Azure), Agile SDLC, CI/CD, VPNs, and modern web applications.
  • This role requires 100% of work to be performed in a remote office environment and requires the ability to use keyboards and other computer equipment.
  • This is a remote position with less than 10% travel requirements. Occasional planned travel may be required as part of the role.

The expected salary range for this role is $140,000 - $170,000 USD per year for full time team members.

Apply