The role involves testing and evaluating internal controls against AICPA Trust Services Criteria to produce detailed SOC 2 Type 2 reports. Responsibilities include conducting gap analyses, gathering audit evidence, and providing remediation guidance to improve security posture.
TestPros
14 Remote Job Openings at TestPros
Privacy Compliance Consultant - Childrenβs Data Compliance (Part Time, Remote)
TestPros
·
Full Time
·
23 days ago
TestPros
Conduct independent privacy assessments of digital products to ensure compliance with children's data privacy regulations. Evaluate data collection, storage, and sharing practices while providing detailed audit reports and recommendations.
The specialist will perform independent IT assessments and reviews across PMO areas including configuration, integration, and testing. They are responsible for developing technical test documentation and ensuring adherence to program policies and procedures.
Develop and maintain critical security documentation including SSPs, SARs, and POA&Ms to achieve Authority To Operate (ATO). Conduct security control assessments, vulnerability scans, and risk analyses to ensure compliance with federal frameworks.
Advise commercial clients on FedRAMP requirements and NIST standards to prepare them for 3PAO audits. This includes conducting gap assessments, developing security documentation, and providing technical guidance for cloud environments.
Conduct comprehensive penetration tests across hosted and cloud environments for commercial and federal clients. Manage the full consulting lifecycle, including requirements analysis, reporting, and providing security improvement recommendations.
Provide expert guidance to clients to achieve and maintain CMMC 2.0 compliance across levels 1-3. Responsibilities include assessing organizational readiness, developing compliance roadmaps, and overseeing subcontractor security requirements.
IT Accessibility Assessment Consultant (Part Time and Remote)
TestPros
·
Full Time
·
23 days ago
TestPros
Perform accessibility audits and validation testing on cell phones and hardware to ensure compliance with Section 508 and WCAG standards. Document findings, recommend remediation solutions, and deliver educational presentations and training on accessibility topics.
Lead end-to-end internal assessments based on PCI DSS requirements and manage team communications regarding deliverables. Partner with security officers and application owners to handle evidence preparation and review.
Remediate complex digital documents across various file types to ensure compliance with accessibility standards. Conduct quality assurance reviews and collaborate with team members to maintain efficient submission workflows.
Conduct independent security control compliance assessments using NIST guidelines and automate assessments via OSCAL. Develop critical security documentation including Security Assessment Plans, Reports, and Plans of Actions and Milestones.
HIPAA Compliance Assessor/Consultant (Remote, Part-Time)
TestPros
·
Full Time
·
23 days ago
TestPros
Conduct independent HIPAA compliance assessments to evaluate how platforms collect and protect user data, specifically for minors. Identify ePHI, assess security measures, and document risk mitigation plans in formal reports.
Lead the design, implementation, and maintenance of the Information Security Management System (ISMS) in compliance with ISO 27001 standards. Conduct risk assessments, internal audits, and deliver security training to ensure organizational compliance.
Perform hands-on remediation of public-facing web content to fix accessibility defects identified during audits. This includes updating HTML structure, managing CMS content, and ensuring compliance with WCAG, ADA, and Section 508 standards.