Ethos Life

life insurance technology

SeniorITAuditor

Bangalore, India

The Brief

“Senior IT Auditor at Ethos Life. Skills: ITGC testing, SOX 404 requirements, SOC Report analysis. supporting the organization's information security governance, risk, and compliance activities. ensuring that the organization’s security policies, procedures, and practices are aligned with regulatory requirements, industry standards, and best practices”

What You'll Achieve.

ensure compliance with SOX 404 and organizational objectives; ensure alignment of IT controls with business objectives and regulatory requirements; ensure system-generated data is reliable; ensure "security by design" and auditability; improve audit efficiency

Industry & Context.

life insurance technology

Problems you'll solve

identify gaps in the governance structure; Assess Segregation of Duties (SoD); identifying and validating mitigating controls; Identify, document, and communicate control deficiencies

What They're Looking For.

Must Have

4-5+ years of direct experience in IT Audit, CISA (required)

Nice to Have

CISSP, CPA, CIA

What You'll Do.

supporting the organization's information security governance

and compliance activities

ensuring that the organization’s security policies

and practices are aligned with regulatory requirements

Evaluate the design and effectiveness of IT governance frameworks to ensure compliance with SOX 404 and organizational objectives

Ensure alignment of IT controls with business objectives and regulatory requirements

Perform independent assessments of the IT control environment to identify gaps in the governance structure

Lead the end-to-end execution of IT General Controls (ITGC) testing across domains including Logical Access

Perform walkthroughs and testing of Automated Application Controls and Manual-Dependent Controls to ensure system-generated data is reliable

Assess Segregation of Duties (SoD) within key ERP systems and financial applications

identifying and validating mitigating controls where necessary

Execute rigorous testing of Information Produced by Entity (IPE) and Information Used in Control (IUC) to ensure completeness and accuracy

Perform SOC 1 and SOC 2 Type II report evaluations

specifically mapping Complementary User Entity Controls (CUECs) to internal control environments

and communicate control deficiencies (SD/MW) to stakeholders and track remediation efforts to completion

Assist in the annual Top-Down Risk Assessment (TDRA) to define the scope of the IT SOX program

Conduct targeted pre-implementation reviews for new systems or significant process changes to ensure "security by design" and auditability

Partner with business and IT process owners to provide technical expertise on control design and process optimization

Stay current on PCAOB trends and emerging IT audit methodologies to improve audit efficiency

Maintain comprehensive and accurate workpapers related to SOX compliance

meeting "reperformance" standards

Prepare and present audit findings and executive summaries on the organization's compliance status to senior management

Ensure all documentation is in compliance with Internal Audit standards and external auditor expectations

How You'll Work.

Team & Collaboration

communicate complex security issues to various stakeholders; Partner with business and IT process owners; communicate control deficiencies (SD/MW) to stakeholders; Prepare and present audit findings and executive summaries on the organization's compliance status to senior management

Communication Scope

Excellent communication skills; ability to convey technical control deficiencies to financial controllers and process owners

Process & Methodology

Lead the end-to-end execution of IT General Controls (ITGC) testing, track remediation efforts to completion

Free ATS check

Applying for this Senior IT Auditor role?

Most applicants get filtered before a human reads their resume. See if yours makes the cut.

Should you apply? AI reads your resume vs this job — match score, gaps to address, ATS keywords.

Skill Signal 17 detected

Core

ITGC testing ×6

SOX 404 requirements ×6

SOC Report analysis ×6

Required

testing of automated business process controls ×3

auditing diverse environments ×3

interpreting SOC 1 Type II Bridge Letters and CUECs ×3

SAP ×2

Oracle ×2

SQL databases ×2

Nice to have

AWS

Azure

IT governance frameworks

Automated business process controls

IPE/IUC requirements

data integrity validation

Complementary User Entity Controls (CUECs)

AWS/Azure cloud

Behavioural

communication skills

ability to convey technical control deficiencies to financial controllers and process owners

Role Details

Experience

4–5 yrs

Education

Bachelor’s degree

How to Apply on Greenhouse

Create a Greenhouse profile before applying — it saves time across multiple applications.
Upload your resume as a PDF; the parser handles it better than Word.
Answer all knockout questions carefully — wrong answers auto-reject before a human sees you.
Enable email notifications to track application status in real time.

ANONYMOUS · UNFILTERED

What do employees actually say about Ethos Life?

Real rants from real employees. Read before you apply.

Read Company Rants →