Job Description
We are looking to engage an experienced Information Security & Compliance Consultant to support us with Vulnerability Assessment & Penetration Testing (VAPT) and security certifications, including SOC 2 Type II and ISO 27001.
This engagement is for a technology platform (SaaS / AI-based) and will involve both technical assessments and compliance readiness support.
Scope of Work
VAPT
Black-box / Grey-box security testing
Application, API, and infrastructure testing
Detailed vulnerability report with severity classification
Actionable remediation recommendations
Re-testing and final closure report
Compliance & Certification Support
SOC 2 Type II readiness assessment
ISO 27001 gap analysis & ISMS guidance
Policy & documentation support (where required)
Coordination support for audits with certifying bodies
Final audit assistance until certification
Requirements
Proven experience delivering VAPT engagements for SaaS / cloud platforms
Hands-on experience with SOC 2 Type II and/or ISO 27001 certification projects
Familiarity with cloud environments (AWS / Azure / GCP)
Strong documentation and reporting skills
Ability to work independently and meet audit timelines
Nice to Have
Prior work with startups or fast-growing tech companies
Certifications such as CEH, OSCP, CISSP, CISA, ISO Lead Auditor
Engagement Type
Contract / Consulting
Open to project-based or milestone-based pricing
Remote engagement
To Apply, Please Include
Brief overview of your relevant experience
Examples of similar VAPT or SOC 2 / ISO projects completed
Tools and methodologies you typically use
Your estimated timeline and commercial model
Apply Now
Apply Now