Job Title

About the TeamAt Navi, the InfoSec team safeguards our digital ecosystem - ensuring the confidentiality, integrity, and availability of critical systems and data. We lead the charge on cyber risk management, regulatory compliance, and data protection, while championing a security-first culture across all teams.Our mission: Protect what powers Navi - securely, compliantly, and confidently.About the RoleNavi is looking for an Associate Manager – Cyber Security to pilot key aspects of its group-wide information security and regulatory compliance program. The ideal candidate will be responsible for developing and implementing comprehensive security strategies to protect our organization’s information assets. This role involves interpreting and implementing information security and technology risks mandates from regulators such as RBI, IRDAI, SEBI, and NPCI, ensuring continuous tech compliance across all business units. This includes active engagement in security operations, incident response, risk assessments, and policy enforcement.The ideal candidate will play a strategic and operational role in defining, implementing, and maintaining Navi’s information security posture, while ensuring continuous technology compliance across all business units. You will collaborate closely with engineering, infrastructure, legal, and IT teams to establish and maintain robust security operations policies, frameworks, and controls.What We Expect From YouTechnical SkillsetImplement the overall security strategy for the organization.Translate complex regulatory requirements into actionable security controls.Security OperationsPerform daily security operations including monitoring, incident response, and threat management.Coordinate investigation and resolution of security breaches and vulnerabilities.Experienced on SIEM, XDR, ASM, DMARC, IAM , cloud security, email security, CASB, DLP is mandatoryExperience and knowledge of managing security operations centers (SOC). Proficiency with SIEM tools (e.g., Splunk, ArcSight, QRadar).Ability to configure, monitor, and analyze security events.Knowledge of threat hunting, threat modeling, and incident response.Ability to analyze threat data and implement proactive security measures.Cloud Security:Understanding of cloud security principles and best practices for AWS and Google Cloud. Experience with cloud security tools and servicesManage and respond to security incidents and breaches, conducting thorough investigations and implementing corrective actions.Risk ManagementIdentify, assess, and prioritize potential security risks and vulnerabilities. Experience with vulnerability assessment tools (e.g., Nessus, Qualys). Knowledge of patch management processes and remediation strategies.Develop and implement risk mitigation strategies and controls.Conduct regular security assessments and audits to ensure compliance with policies and standards.Policy and ComplianceImplement, review, and update security policies, procedures, and guidelines.Ensure compliance with industry standards and regulatory requirements (e.g., ISO 27001, PCI-DSS, RBI, IRDAI and SEBI).Coordinate and lead internal and external audits related to IT security.Training and AwarenessPromote a culture of security awareness throughout the organizationTechnology and InnovationStay current with emerging security threats, technologies, and industry trends.Evaluate and implement new security technologies and solutions to enhance the organization’s security posture.Must HavesQualificationsBachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.Relevant certifications such as CISSP, CISM, CISA, or equivalent are highly desirable.Experience0 to 3 years of experience in cyber security in implementation and operations..Proven experience in developing and implementing security strategies and policies.Strong knowledge of security frameworks, standards, and best practices.SkillsExcellent implementation and operation management skills.Strong analytical and problem-solving abilities.Effective communication and interpersonal skills.Proficiency in security tools and technologies (e.g., firewalls, intrusion detection/prevention systems, SIEM).Personal AttributesHigh level of integrity and ethical conduct.Ability to work under pressure and manage multiple priorities.Strong attention to detail and accuracy.Inside NaviWe are shaping the future of financial services for a billion Indians through products that are simple, accessible, and affordable. From Personal & Home Loans to UPI, Insurance, Mutual Funds, and Gold — we’re building tech-first solutions that work at scale, with a strong customer-first approach. Founded by Sachin Bansal & Ankit Agarwal in 2018, we are one of India’s fastest-growing financial services organisations. But we’re just getting started!Our CultureAt Navi, we’re a place where ambition meets opportunity and ideas turn into impact quickly. We empower people with high ownership from the start, encouraging them to solve meaningful problems and build with excellence. Teams here work in an environment that values speed, collaboration and craftsmanship, while celebrating learning, growth and shared wins along the way. Whether you’re shaping the future of fintech products or driving innovation behind the scenes, life at Navi means being part of a high-energy, talent-driven workplace where your contributions truly make a difference.We’re guided by our own operating system - The Navi OS - a set of principles that shape how we work and win together. You can explore them at /our-values to see what drives us every day.If this feels like you, Navi is the place to grow, thrive and make a real impact