VAPT & SOC 2 Type II / ISO 27001 Compliance Consultant Needed

Job Description We are looking to engage an experienced Information Security & Compliance Consultant to support us with Vulnerability Assessment & Penetration Testing (VAPT) and security certifications, including SOC 2 Type II and ISO 27001. This engagement is for a technology platform (SaaS / AI-based) and will involve both technical assessments and compliance readiness support. Scope of Work VAPT Black-box / Grey-box security testing Application, API, and infrastructure testing Detailed vulnerability report with severity classification Actionable remediation recommendations Re-testing and final closure report Compliance & Certification Support SOC 2 Type II readiness assessment ISO 27001 gap analysis & ISMS guidance Policy & documentation support (where required) Coordination support for audits with certifying bodies Final audit assistance until certification Requirements Proven experience delivering VAPT engagements for SaaS / cloud platforms Hands-on experience with SOC 2 Type II and/or ISO 27001 certification projects Familiarity with cloud environments (AWS / Azure / GCP) Strong documentation and reporting skills Ability to work independently and meet audit timelines Nice to Have Prior work with startups or fast-growing tech companies Certifications such as CEH, OSCP, CISSP, CISA, ISO Lead Auditor Engagement Type Contract / Consulting Open to project-based or milestone-based pricing Remote engagement To Apply, Please Include Brief overview of your relevant experience Examples of similar VAPT or SOC 2 / ISO projects completed Tools and methodologies you typically use Your estimated timeline and commercial model Apply tot his job