Jobs › Senior IT Auditor
Senior IT Auditor
Role at a glance
- Category
- Audit
- Work arrangement
- On-site
- Location
- Bangalore, India
- Posted
- Jun 13, 2026
Ethos is hiring a Senior IT Auditor in Bangalore, India. This is a Audit role in the governance, risk, and compliance field. Review the full details below and apply directly with Ethos.
About Ethos Ethos is a leading life insurance technology company on a mission to protect families by democratizing access to life insurance and empowering agents at scale. With its robust three-sided technology platform, Ethos is transforming the life insurance experience for consumers, agents, and carriers alike. Ethos offers instant, accessible products and a seamless online process that requires no medical exams and just a few health questions; it eliminates traditional barriers, making it easier than ever for everyone to protect their families. Ethos is redefining how life insurance is bought, sold, and underwritten. About the role: The Senior GRC Analyst is responsible for supporting the organization s information security governance, risk, and compliance activities. This role involves ensuring that the organization’s security policies, procedures, and practices are aligned with regulatory requirements, industry standards, and best practices. The ideal candidate will have a strong understanding of information Security and Privacy principles, Third Party Vendor Risk management, ITGC and SOC2 audit controls, and the ability to communicate complex security issues to various stakeholders. Duties and Responsibilities: 1. Audit Governance and Strategy Evaluate the design and effectiveness of IT governance frameworks to ensure compliance with SOX 404 and organizational objectives. Ensure alignment of IT controls with business objectives and regulatory requirements. Perform independent assessments of the IT control environment to identify gaps in the governance structure. 2. SOX Compliance and Internal Controls Lead the end-to-end execution of IT General Controls (ITGC) testing across domains including Logical Access, Change Management, and IT Operations. Perform walkthroughs and testing of Automated Application Controls and Manual-Dependent Controls to ensure system-generated data is reliable. Assess Segregation of Duties (SoD) within key ERP systems and financial applications, identifying and validating mitigating controls where necessary. Execute rigorous testing of Information Produced by Entity (IPE) and Information Used in Control (IUC) to ensure completeness and accuracy. Perform SOC 1 and SOC 2 Type II report evaluations, specifically mapping Complementary User Entity Controls (CUECs) to internal control environments. Identify, document, and communicate control deficiencies (SD/MW) to stakeholders and track remediation efforts to completion. 3. Risk
Full responsibilities and requirements are on Ethos's application page.
Apply for this role →Location and market context
This role is based in Bangalore, India on-site. Local candidates benefit from being close to Ethos's teams and regional hiring market. Confirm the exact in-office expectation and any relocation support with the employer.
About internal audit roles
Internal audit gives independent assurance over controls and risk. Technology, data, and AI audit skills are in rising demand as programs modernize. Roles like this one are typically evaluated against frameworks such as IIA standards, COSO, NIST AI RMF, and IT and data audit practices.
How to position yourself for this internal audit role
Strong candidates emphasize risk-based audit planning, control testing and evidence, clear findings and remediation tracking, and technology, data, or AI audit depth. In your resume and outreach, tie your experience to how Ethos would apply IIA standards, COSO, NIST AI RMF, and IT and data audit practices, and lead with concrete outcomes rather than duties.
Similar GRC roles
More GRC jobs: All GRC roles · Browse by category & location