Working at Thoropass

At Thoropass, we are revolutionizing the compliance and audit industry by integrating cutting-edge AI technology with expert human insight. Our team is dedicated to delivering exceptional customer experiences and high-quality outcomes.

We’re driven by our mission to build a world that’s safer for consumers and ensuring compliance is never a blocker to innovation. By bringing together remarkably talented individuals, we’re looking to help the industry see compliance as an advantage. Join us as we collaborate to establish our platform as the world's leading choice for compliance and audit solutions.

Our Values

These are the behaviors and skills we look for in our people. Living by these values ensures we are building a team that can grow together and deliver the best possible outcomes for each other and our customers.

• Take thoughtful risk: We solve for today while being considerate of tomorrow—creatively leveraging our tools and abilities to hit ambitious goals.
• Be curious, ask, and learn: We always seek to better understand our industry and our customers. We don’t shy away from mistakes—using every bit of data to learn and iterate.
• Win together: Compliance is a team sport. We proactively engage with one another and check our egos at the door in search of the best ideas.
• Move the needle: Our goals are lofty for a reason. We set clear expectations, give direct feedback, and challenge ourselves to close the gap between those goals and results.

What We Do

Thoropass is transforming the landscape of security compliance and audits. As the only all-in-one platform that combines compliance automation software with a tech-enabled audit firm and pentest services, we offer a modern approach to information security compliance and audit. Our AI-powered solutions, such as First Pass AI, are designed to streamline compliance and accelerate audits for frameworks like SOC, PCI, ISO, HITRUST, HIPAA, and more. Thousands of companies trust Thoropass for high-quality audit and assessment services, delighting in a truly differentiated experience.

Founded in 2019 and headquartered in New York, Thoropass has rapidly expanded with $97M in funding from top investors including J.P. Morgan, PayPal Ventures, Fin Capital, Centana, Canapi, and Bain Capital. We operate as a virtual, global company with a presence in over 18 countries. With substantial growth in both customers and revenue, we are strategically positioned for continued expansion in 2025 and beyond.

About the Role

We are seeking a highly skilled and detail-oriented Audit Quality Assurance Lead to join our audit team and play a critical role in maintaining the quality, consistency, and technical accuracy of our assurance reports. This individual will focus primarily on reviewing SOC 1 and SOC 2 reports, with opportunities to expand into additional frameworks over time.

This role goes beyond editorial review—it requires deep technical expertise, strong audit judgment, and the ability to evaluate complex technology environments and control descriptions. You will also contribute to shaping QA standards, improving processes, and collaborating cross-functionally to ensure quality remains uncompromised as the organization evolves.

This role will be reporting directly to the Head of Quality Assurance - InfoSec Solutions.

What You'll Do

• Perform comprehensive quality assurance reviews of SOC 1 and SOC 2 reports, including technical accuracy, completeness, and consistency
• Evaluate Section III (System Description) for accuracy, clarity, and alignment with control objectives and testing
• Review technology stacks, architectures, and control implementations to ensure accuracy and appropriateness
• Ensure reports adhere to firm standards, professional guidelines (AICPA), and internal QA frameworks
• Identify inconsistencies, gaps, or risks in audit documentation and provide actionable feedback to audit teams
• Drive standardization across reports, templates, and QA processes
• Partner with audit, delivery, and operations teams to implement process improvements without compromising QA integrity
• Contribute to the development and maintenance of QA checklists, playbooks, and review methodologies
• Mentor and support junior QA team members as the team scales

Skillsets/ Requirements

• 4+ years of experience in SOC 1 and/or SOC 2 audits
• Strong understanding of AICPA standards, SOC reporting requirements, and internal controls over financial reporting (ICFR)
• Proven experience reviewing Section III (system descriptions) and control environments for accuracy
• Solid technical knowledge of modern technology stacks (e.g., cloud infrastructure, SaaS environments, security controls)
• Exceptional attention to detail with the ability to identify nuanced issues in complex reports
• Strong written and verbal communication skills, with the ability to provide clear, constructive feedback
• Experience developing or improving QA processes, frameworks, or standards
• Ability to manage multiple reviews and deadlines in a fast-paced environment
• CPA, CISA, or equivalent certification (or in progress)

Bonus Points

• Experience with additional frameworks (e.g., ISO 27001, HITRUST, PCI DSS)
• Background in IT audit, cybersecurity, or risk advisory
• Familiarity with cloud platforms such as AWS, Azure, or GCP
• Experience working in or with high-growth audit or compliance organizations
• Prior experience building or scaling QA functions or teams
• Strong stakeholder management and cross-functional collaboration experience

LATAM Compensation:

• Competitive base salary
• Exceptional private healthcare
• Early equity in a fast-growing company
• Work-from-home model
• Flexible PTO
• Company-provided laptop
• Monthly wellness and home Wi-Fi stipend