Associate Manager II - Information Security (Governance, Risk, and Compliance)

About the Team

At Navi, the InfoSec team safeguards our digital ecosystem - ensuring the confidentiality, integrity, and availability of critical systems and data. We lead the charge on cyber risk management, regulatory compliance, and data protection, while championing a security-first culture across all teams.

Our mission : Protect what powers Navi - securely, compliantly, and confidently.

About the Role

Navi is looking for an Associate Manager II – Information Security to pilot key aspects of its group-wide information security and regulatory compliance program. This role involves interpreting and implementing information security and technology risks mandates from regulators such as RBI, IRDAI, SEBI, and NPCI, ensuring continuous tech compliance across all business units. You will collaborate closely with engineering, infrastructure, legal, and IT teams to establish and maintain robust security policies, frameworks, and controls. Additionally, the role includes conducting risk assessments, enabling audit readiness, managing third party / vendor security audits, and driving awareness initiatives across the organization, while also representing Navi in internal and external forums when needed.

What We Expect From You

Compliance & Risk Management

Interpret and implement regulations related to cybersecurity issued by RBI, IRDAI, SEBI , NPCI.

Ensure ongoing monitoring and tech compliance with regulatory expectations.

Conduct and review Technology Risk Assessments , and recommend mitigation strategies.

Maintain tech audit readiness with appropriate documentation and evidence.

Represent Navi in Board meetings and regulatory discussions, if needed.

Security Governance

Define, uplift and implement information security policies, frameworks, standards, and controls .

Solution Architect mind set for regulatory cybersecurity compliance .

Review security controls at data centers, the cloud environment, and ensure BCP / DR controls.

Review and conduct Third Party Risk & Vendor Assessments pre-onboarding and post onboarding .

Manage cyber / information security incidents and drive timely resolution.

Operations & Enablement

Run security awareness programs and train teams / employees on data security and privacy.

Identify, define and manage Security KPIs , publish weekly / monthly dashboards.

Project manage Information Security initiatives with measurable outcomes.

Must Haves

Experience & Technical Skills

5+ years of experience in Information Security or tech Compliance roles.

Prior experience in Fintech / Startup environments (preferred).

Familiarity with regulatory compliance frameworks like , RBI Master Directions, IRDA, SEBI, and NPCI guidelines.

Experience with frameworks such as ISO27001 , PCI DSS , SOC2 etc.

Working knowledge of cloud environments like AWS, Oracle Cloud, GCP.

Exposure to Agile methodologies , DevOps , and Cloud-native tech .

Soft Skills

Hands-on problem-solver for complex security issues.

Strong ability to multitask, prioritize, and meet deadlines in a fast-paced environment.

Ability to balance risk, impact, business priorities, and timelines.

Excellent communication skills (verbal and written).

Qualifications

Bachelor’s degree or diploma in Technology, or Engineering.

Relevant certifications like ISO 27001 Lead Auditor / Implementer , CISA , CISM , CISSP , etc.

Inside Navi

We are shaping the future of financial services for a billion Indians through products that are simple, accessible, and affordable. From Personal & Home Loans to UPI, Insurance, Mutual Funds, and Gold — we’re building tech-first solutions that work at scale, with a strong customer first approach.

Founded by Sachin Bansal & Ankit Agarwal in 2018, we are one of India’s fastest-growing financial services organisations. But we’re just getting started!

Our Culture

The Navi DNA

Ambition. Perseverance. Self-awareness. Ownership. Integrity.

We’re looking for people who dream big when it comes to innovation. At Navi, you’ll be empowered with the right mechanisms to work in a dynamic team that builds and improves innovative solutions. If you’re driven to deliver real value to customers, no matter the challenge, this is the place for you.

We chase excellence by uplifting each other—and that starts with every one of us.

Why You'll Thrive at Navi

At Navi, it’s about how you think, build, and grow. You’ll thrive here if :

You’re impact-driven : You take ownership, build boldly, and care about making a real difference.

You strive for excellence : Good isn’t good enough. You bring focus, precision, and a passion for quality.

You embrace change : You adapt quickly, move fast, and always put the customer first.