Associate Manager II - Cyber Security

About the Team

At Navi, the InfoSec team safeguards our digital ecosystem - ensuring the confidentiality, integrity, and availability of critical systems and data. We lead the charge on cyber risk management, regulatory compliance, and data protection, while championing a security-first culture across all teams.

Our mission: Protect what powers Navi - securely, compliantly, and confidently.

About the Role

Navi is looking for an Associate Manager II – Cyber Security to pilot key aspects

of its group-wide information security and regulatory compliance program. The ideal

candidate will be responsible for developing and implementing comprehensive security

strategies to protect our organization’s information assets. This role involves interpreting

and implementing information security and technology risks mandates from regulators

such as RBI, IRDAI, SEBI, and NPCI, ensuring continuous tech compliance across all

business units. This includes active engagement in security operations, incident

response, risk assessments, and policy enforcement.

The ideal candidate will play a strategic and operational role in defining, implementing,

and maintaining Navi’s information security posture, while ensuring continuous

technology compliance across all business units. You will collaborate closely with

engineering, infrastructure, legal, and IT teams to establish and maintain robust

security operations policies, frameworks, and controls.

What We Expect From You

Technical Skillset:

• Implement the overall security strategy for the organization.
• Translate complex regulatory requirements into actionable security controls.

Security Operations:

• Perform daily security operations including monitoring, incident response, and threat management.
• Coordinate investigation and resolution of security breaches and vulnerabilities.
• Experienced on SIEM, XDR, ASM, DMARC, IAM , cloud security, email security, CASB, DLP is mandatory
• Experience and knowledge of managing security operations centers (SOC). Proficiency with SIEM tools (e.g., Splunk, ArcSight, QRadar).
• Ability to configure, monitor, and analyze security events.
• Knowledge of threat hunting, threat modeling, and incident response.
• Ability to analyze threat data and implement proactive security measures.
• Cloud Security:Understanding of cloud security principles and best practices for AWS and Google Cloud. Experience with cloud security tools and services
• Manage and respond to security incidents and breaches, conducting thorough investigations and implementing corrective actions.

Risk Management:

• Identify, assess, and prioritize potential security risks and vulnerabilities. Experience with vulnerability assessment tools (e.g., Nessus, Qualys). Knowledge of patch management processes and remediation strategies.
• Develop and implement risk mitigation strategies and controls.
• Conduct regular security assessments and audits to ensure compliance with policies and standards.

Policy and Compliance:

• Implement, review, and update security policies, procedures, and guidelines.
• Ensure compliance with industry standards and regulatory requirements (e.g., ISO 27001, PCI-DSS, RBI, IRDAI and SEBI).
• Coordinate and lead internal and external audits related to IT security.

Training and Awareness:

• Promote a culture of security awareness throughout the organization.

Technology and Innovation:

• Stay current with emerging security threats, technologies, and industry trends.
• Evaluate and implement new security technologies and solutions to enhance the organization’s security posture.

Must Haves :

Qualifications

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Relevant certifications such as CISSP, CISM, CISA, or equivalent are highly desirable.

Experience:

• 4+ years of experience in cyber security in implementation and operations..
• Proven experience in developing and implementing security strategies and policies.
• Strong knowledge of security frameworks, standards, and best practices.

Skills:

• Excellent implementation and operation management skills.
• Strong analytical and problem-solving abilities.
• Effective communication and interpersonal skills.
• Proficiency in security tools and technologies (e.g., firewalls, intrusion detection/prevention systems, SIEM).

Personal Attributes:

• High level of integrity and ethical conduct.
• Ability to work under pressure and manage multiple priorities.
• Strong attention to detail and accuracy.

Inside Navi

We are shaping the future of financial services for a billion Indians through products that are simple, accessible, and affordable. From Personal & Home Loans to UPI, Insurance, Mutual Funds, and Gold — we’re building tech-first solutions that work at scale, with a strong customer first approach.

Sachin Bansal & Ankit Agarwal

Our Culture

The Navi DNA

Ambition. Perseverance. Self-awareness. Ownership. Integrity.

We’re looking for people who dream big when it comes to innovation. At Navi, you’ll be empowered with the right mechanisms to work in a dynamic team that builds and improves innovative solutions. If you’re driven to deliver real value to customers, no matter the challenge, this is the place for you.

We chase excellence by uplifting each other—and that starts with every one of us.

Why You'll Thrive at Navi

At Navi, it’s about how you think, build, and grow. You’ll thrive here if:

• You’re impact-driven :

  You take ownership, build boldly, and care about making a real difference.

• You strive for excellence :

  Good isn’t good enough. You bring focus, precision, and a passion for quality.

• You embrace change :

  You adapt quickly, move fast, and always put the customer first.