Associate Manager - Cyber Security

About the Team

At Navi, the InfoSec team safeguards our digital ecosystem - ensuring the confidentiality, integrity, and availability of critical systems and data. We lead the charge on cyber risk management, regulatory compliance, and data protection, while championing a security-first culture across all teams.

Our mission: Protect what powers Navi - securely, compliantly, and confidently.

About the Role

Navi is looking for an Associate Manager Cyber Security to pilot key aspects of its group-wide information security and regulatory compliance program. The ideal candidate will be responsible for developing and implementing comprehensive security strategies to protect our organizations information assets. This role involves interpreting and implementing information security and technology risks mandates from regulators such as RBI, IRDAI, SEBI, and NPCI, ensuring continuous tech compliance across all business units. This includes active engagement in security operations, incident response, risk assessments, and policy enforcement.

The ideal candidate will play a strategic and operational role in defining, implementing, and maintaining Navis information security posture, while ensuring continuous technology compliance across all business units. You will collaborate closely with engineering, infrastructure, legal, and IT teams to establish and maintain robust security operations policies, frameworks, and controls.

What We Expect From You

Technical Skillset

• Implement the overall security strategy for the organization.
• Translate complex regulatory requirements into actionable security controls.

Security Operations

• Perform daily security operations including monitoring, incident response, and threat management.
• Coordinate investigation and resolution of security breaches and vulnerabilities.
• Experienced on SIEM, XDR, ASM, DMARC, IAM , cloud security, email security, CASB, DLP is mandatory
• Experience and knowledge of managing security operations centers (SOC). Proficiency with SIEM tools (e.g., Splunk, ArcSight, QRadar).
• Ability to configure, monitor, and analyze security events.
• Knowledge of threat hunting, threat modeling, and incident response.
• Ability to analyze threat data and implement proactive security measures.
• Cloud Security:Understanding of cloud security principles and best practices for AWS and Google Cloud. Experience with cloud security tools and services
• Manage and respond to security incidents and breaches, conducting thorough investigations and implementing corrective actions.

Risk Management

• Identify, assess, and prioritize potential security risks and vulnerabilities. Experience with vulnerability assessment tools (e.g., Nessus, Qualys). Knowledge of patch management processes and remediation strategies.
• Develop and implement risk mitigation strategies and controls.
• Conduct regular security assessments and audits to ensure compliance with policies and standards.

Policy and Compliance

• Implement, review, and update security policies, procedures, and guidelines.
• Ensure compliance with industry standards and regulatory requirements (e.g., ISO 27001, PCI-DSS, RBI, IRDAI and SEBI).
• Coordinate and lead internal and external audits related to IT security.

Training and Awareness

• Promote a culture of security awareness throughout the organization

Technology and Innovation

• Stay current with emerging security threats, technologies, and industry trends.
• Evaluate and implement new security technologies and solutions to enhance the organizations security posture.

Must Haves

Qualifications

• Bachelors degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Relevant certifications such as CISSP, CISM, CISA, or equivalent are highly desirable.

Experience

• 0 to 3 years of experience in cyber security in implementation and operations..
• Proven experience in developing and implementing security strategies and policies.
• Strong knowledge of security frameworks, standards, and best practices.

Skills

• Excellent implementation and operation management skills.
• Strong analytical and problem-solving abilities.
• Effective communication and interpersonal skills.
• Proficiency in security tools and technologies (e.g., firewalls, intrusion detection/prevention systems, SIEM).

Personal Attributes

• High level of integrity and ethical conduct.
• Ability to work under pressure and manage multiple priorities.
• Strong attention to detail and accuracy.

Inside Navi

We are shaping the future of financial services for a billion Indians through products that are simple, accessible, and affordable. From Personal & Home Loans to UPI, Insurance, Mutual Funds, and Gold were building tech-first solutions that work at scale, with a strong customer-first approach.

Founded by Sachin Bansal & Ankit Agarwal in 2018, we are one of Indias fastest-growing financial services organisations. But were just getting started!

Our Culture

At Navi, were a place where ambition meets opportunity and ideas turn into impact quickly. We empower people with high ownership from the start, encouraging them to solve meaningful problems and build with excellence. Teams here work in an environment that values speed, collaboration and craftsmanship, while celebrating learning, growth and shared wins along the way. Whether youre shaping the future of fintech products or driving innovation behind the scenes, life at Navi means being part of a high-energy, talent-driven workplace where your contributions truly make a difference.

Were guided by our own operating system - The Navi OS - a set of principles that shape how we work and win together. You can explore them at navi.com/our-values to see what drives us every day.

If this feels like you, Navi is the place to grow, thrive and make a real impact