Overview
On Site
USD 95,000.00 - 125,000.00 per year
Full Time
Skills
Information Technology
Underwriting
Financial Software
IT Infrastructure
IT Risk
Data Management
Internal Auditing
Finance
Identity Management
Change Management
Backup
Recovery
Financial Reporting
ISO/IEC 27001:2005
Privacy
Penetration Testing
Vulnerability Management
Provisioning
Regulatory Compliance
Data Security
Law
Collaboration
Leadership
Management
Corrective And Preventive Action
ROOT
Testing
Computer Science
Accounting
CISA
Information Systems
CISSP
ISACA
IT Audit
Data Governance
Property And Casualty Insurance
Financial Services
SOX 404
System On A Chip
Cloud Computing
Amazon Web Services
Microsoft Azure
Enterprise Resource Planning
Policy Administration
Analytical Skill
Auditing
Analytics
Microsoft Power BI
SQL
ACL
Network Design
Access Control
IT Operations
Software Security
Cyber Security
Incident Management
Insurance
Reporting
Legal
Job Details
Job Type
Full-time
Description
Aspire General Insurance Company and its affiliated general agent, Aspire General Insurance Services, are on a mission to deliver affordable specialty auto coverage to drivers without compromising outstanding service.
Our company values can best be described with ABLE : to always do the right thing, be yourself, learn and evolve, and execute. Join our team where every individual takes pride in driving their role for shared success.
Requirements
Position Summary
The Sr. IT Auditor is responsible for overseeing and executing audits of the company's information technology systems, cybersecurity programs, and IT general controls (ITGCs) to ensure compliance with internal policies, regulatory standards, and best practices.
This role plays a key part in evaluating technology risks across the Property and Casualty (P&C) insurance environment-including policy administration, claims, underwriting, and financial systems-and ensuring the company's technology infrastructure supports accurate, secure, and reliable financial and operational reporting.
The Sr. IT Auditor will serve as a subject matter expert (SME) on IT risk and control assurance, providing insights to management on emerging technology risks, control enhancements, and cybersecurity governance.
Key Responsibilities
Plan, lead and perform ITaudits across infrastructure, applications, cybersecurity, and data management environments.
Develop detailed audit programs and testing procedures in accordance with risk-based internal audit methodologies and IIA standards.
Evaluate the design and effectiveness of ITGCs, application controls, and automated controls supporting financial and operational processes.
Assess the adequacy of security configurations, access management, change management, and data backup/recovery controls.
Test controls supporting financial reporting under the NAIC Model Audit Rule (MAR)and SOX 404 frameworks.
Perform audits of vendor-hosted systems, cloud environments, and third-party service providers to assess control assurance (including SOC 1 / SOC 2 review).
Evaluate the company's cybersecurity posture, governance practices, and incident response capabilities against frameworks such as NIST CSF and ISO 27001.
Assess controls related to data privacy, system availability, and confidentiality across insurance operations.
Participate in reviews of penetration testing results, vulnerability management processes, and access provisioning practices.
Verify compliance with insurance cybersecurity regulations, including the NAIC Insurance Data Security Model Law and applicable state regulations.
Collaborate with external auditors and Management to ensure proper reliance and alignment of audit activities.
Communicate audit findings and risk implications to Process Owners and Sr. Leadership; assist management in developing corrective action plans.
Prepare concise, well-documented audit reports summarizing observations, root causes, risks, and recommendations.
Track remediation efforts and perform follow-up testing to verify corrective actions have been implemented effectively.
Education & Certifications
Bachelor's degree in Information Systems, Computer Science, Accounting Information Systems, or related discipline required.
Advanced degree or professional certifications strongly preferred:
CISA (Certified Information Systems Auditor)
CISSP, CRISC, or CIA (Certified Internal Auditor) a plus.
Experience
Minimum 5-7 years of progressive ITaudits, risk, or cybersecurity experience.
Strong understanding of IT cybersecurity frameworks, and data governance principles.
Prior experience in Property & Casualty insurance, financial services, or regulated environments preferred.
Experience performing MAR/SOX 404 ITtesting and evaluating SOC 1/SOC 2 reports.
Proven ability to assess complex IT environments including cloud platforms (e.g., AWS, Azure), ERP systems, and policy administration tools.
Technical & Analytical Skills
Proficiency with audit and analytics tools (e.g., Audit Board, TeamMate, Power BI, SQL, ACL).
Strong knowledge of network infrastructure, access control, IT operations, and application security.
Ability to evaluate cybersecurity controls and risk indicators, including incident management and vulnerability remediation.
Technical & Analytical Skills
Proficiency with audit and analytics tools (e.g., AuditBoard, TeamMate, Power BI, SQL, ACL).
Strong knowledge of network infrastructure, access control, IT operations, and application security.
Ability to evaluate cybersecurity controls and risk indicators, including incident management and vulnerability remediation.
Benefits: Medical, Dental, Vision, PTO, 401k, Company Observed Holidays
Individuals seeking employment at Aspire General Insurance Services LLC are considered without regards to race, color, religion, national origin, age, sex, marital status, ancestry, physical or mental disability, veteran status, gender identity, or sexual orientation in accordance with federal and state Equal Employment Opportunity/Affirmative Action record keeping, reporting, and other legal requirements.
Compensation may vary based on several factors, including candidate's individual skills, relevant work experience, location, etc.
Salary Description
$95,000-125,000 annually plus bonus eligible
Full-time
Description
Aspire General Insurance Company and its affiliated general agent, Aspire General Insurance Services, are on a mission to deliver affordable specialty auto coverage to drivers without compromising outstanding service.
Our company values can best be described with ABLE : to always do the right thing, be yourself, learn and evolve, and execute. Join our team where every individual takes pride in driving their role for shared success.
Requirements
Position Summary
The Sr. IT Auditor is responsible for overseeing and executing audits of the company's information technology systems, cybersecurity programs, and IT general controls (ITGCs) to ensure compliance with internal policies, regulatory standards, and best practices.
This role plays a key part in evaluating technology risks across the Property and Casualty (P&C) insurance environment-including policy administration, claims, underwriting, and financial systems-and ensuring the company's technology infrastructure supports accurate, secure, and reliable financial and operational reporting.
The Sr. IT Auditor will serve as a subject matter expert (SME) on IT risk and control assurance, providing insights to management on emerging technology risks, control enhancements, and cybersecurity governance.
Key Responsibilities
Plan, lead and perform ITaudits across infrastructure, applications, cybersecurity, and data management environments.
Develop detailed audit programs and testing procedures in accordance with risk-based internal audit methodologies and IIA standards.
Evaluate the design and effectiveness of ITGCs, application controls, and automated controls supporting financial and operational processes.
Assess the adequacy of security configurations, access management, change management, and data backup/recovery controls.
Test controls supporting financial reporting under the NAIC Model Audit Rule (MAR)and SOX 404 frameworks.
Perform audits of vendor-hosted systems, cloud environments, and third-party service providers to assess control assurance (including SOC 1 / SOC 2 review).
Evaluate the company's cybersecurity posture, governance practices, and incident response capabilities against frameworks such as NIST CSF and ISO 27001.
Assess controls related to data privacy, system availability, and confidentiality across insurance operations.
Participate in reviews of penetration testing results, vulnerability management processes, and access provisioning practices.
Verify compliance with insurance cybersecurity regulations, including the NAIC Insurance Data Security Model Law and applicable state regulations.
Collaborate with external auditors and Management to ensure proper reliance and alignment of audit activities.
Communicate audit findings and risk implications to Process Owners and Sr. Leadership; assist management in developing corrective action plans.
Prepare concise, well-documented audit reports summarizing observations, root causes, risks, and recommendations.
Track remediation efforts and perform follow-up testing to verify corrective actions have been implemented effectively.
Education & Certifications
Bachelor's degree in Information Systems, Computer Science, Accounting Information Systems, or related discipline required.
Advanced degree or professional certifications strongly preferred:
CISA (Certified Information Systems Auditor)
CISSP, CRISC, or CIA (Certified Internal Auditor) a plus.
Experience
Minimum 5-7 years of progressive ITaudits, risk, or cybersecurity experience.
Strong understanding of IT cybersecurity frameworks, and data governance principles.
Prior experience in Property & Casualty insurance, financial services, or regulated environments preferred.
Experience performing MAR/SOX 404 ITtesting and evaluating SOC 1/SOC 2 reports.
Proven ability to assess complex IT environments including cloud platforms (e.g., AWS, Azure), ERP systems, and policy administration tools.
Technical & Analytical Skills
Proficiency with audit and analytics tools (e.g., Audit Board, TeamMate, Power BI, SQL, ACL).
Strong knowledge of network infrastructure, access control, IT operations, and application security.
Ability to evaluate cybersecurity controls and risk indicators, including incident management and vulnerability remediation.
Technical & Analytical Skills
Proficiency with audit and analytics tools (e.g., AuditBoard, TeamMate, Power BI, SQL, ACL).
Strong knowledge of network infrastructure, access control, IT operations, and application security.
Ability to evaluate cybersecurity controls and risk indicators, including incident management and vulnerability remediation.
Benefits: Medical, Dental, Vision, PTO, 401k, Company Observed Holidays
Individuals seeking employment at Aspire General Insurance Services LLC are considered without regards to race, color, religion, national origin, age, sex, marital status, ancestry, physical or mental disability, veteran status, gender identity, or sexual orientation in accordance with federal and state Equal Employment Opportunity/Affirmative Action record keeping, reporting, and other legal requirements.
Compensation may vary based on several factors, including candidate's individual skills, relevant work experience, location, etc.
Salary Description
$95,000-125,000 annually plus bonus eligible
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.