[Hiring] SOC2 Senior Manager @Insight Assurance

Role Description

The Senior Manager – SOC 1 / SOC 2 oversees multiple System and Organization Controls (SOC) examination engagements within the firm’s assurance practice. This role manages the planning, execution, and delivery of SOC 1 and SOC 2 attestation engagements, ensuring compliance with AICPA attestation standards and firm quality requirements.

The Senior Manager serves as a key client contact, guiding SOC reporting requirements, control design, and compliance expectations. This role oversees engagement teams, reviews technical work, and ensures high-quality delivery across engagements.

In addition to engagement delivery, the Senior Manager supports practice growth, contributes to business development efforts, and plays a critical role in developing Managers and junior staff within the SOC practice.

Key Responsibilities

• Engagement Leadership
  • Manage and oversee SOC 1 and SOC 2 examination engagements from planning through report delivery.
  • Coordinate multiple concurrent engagements while ensuring adherence to AICPA attestation standards (SSAE 18 / AT-C 205 / AT-C 320).
  • Develop engagement plans, timelines, and resource allocations.
  • Ensure timely completion of deliverables and high-quality engagement outcomes.
  • Serve as the primary day-to-day engagement lead responsible for execution and client coordination.
• Technical Oversight and Assurance Quality
  • Apply subject matter expertise in:
    • SOC 1 (SSAE 18 – Internal Controls over Financial Reporting)
    • SOC 2 Trust Services Criteria
    • Internal control frameworks and IT control environments
  • Review control testing procedures, workpapers, and supporting documentation for accuracy and completeness.
  • Evaluate control design and operating effectiveness across client environments.
  • Ensure engagement documentation complies with firm methodology and quality standards.
  • Identify and escalate technical or compliance issues to senior leadership.
• Client Advisory and Relationship Management
  • Act as a primary point of contact for client teams during engagements.
  • Lead client walkthroughs, status meetings, and control discussions.
  • Communicate engagement progress, findings, and recommendations clearly to client stakeholders.
  • Provide guidance on SOC readiness, remediation, and control improvements.
  • Support resolution of client issues and ensure a positive engagement experience.
• Report Review and Delivery
  • Review SOC reports, management assertions, and supporting documentation.
  • Ensure deliverables meet AICPA reporting standards and firm quality expectations.
  • Coordinate with Associate Directors/Directors for final review and issuance.
  • Ensure timely delivery of reports and client communications.
• Practice Support and Business Development
  • Support business development initiatives, including:
    • Proposal preparation
    • Scoping discussions
    • Client presentations
  • Identify opportunities to expand services within existing client accounts.
  • Contribute to development of methodologies, templates, and best practices.
  • Support continuous improvement of engagement processes and tools.
• Team Leadership and Mentorship
  • Manage and mentor Managers, Seniors, and Associates across engagements.
  • Provide coaching and technical training on SOC reporting and internal controls.
  • Review staff work and provide performance feedback.
  • Support onboarding and development of new team members.
  • Promote a collaborative and high-performance team environment.

Qualifications

• Bachelor’s degree in Accounting, Information Systems, Cybersecurity, or related field.
• 6+ years of experience in audit, assurance, cybersecurity compliance, or risk advisory.
• Significant experience performing and managing SOC 1 and SOC 2 engagements.
• Strong knowledge of AICPA attestation standards and SOC reporting frameworks.
• Experience managing multiple engagements and leading engagement teams.
• Strong written and verbal communication skills.

Preferred Qualifications

• CPA license (active or in progress).
• Additional certifications such as CISA, CISSP, CISM, or CRISC.
• Experience working in public accounting, consulting, or specialized assurance firms.
• Familiarity with frameworks including:
  • ISO 27001
  • HITRUST
  • PCI DSS
  • NIST Cybersecurity Framework
• Experience working with SaaS, cloud service providers, or technology companies.