Senior Manager - Cyber Security

Hiring Manager :: Naseem HalderTeam :: Information Security
About Navi
Navi is one of the fastest-growing financial services companies in India providing Personal & Home Loans, UPI, Insurance, Mutual Funds, and Gold. Navi's mission is to deliver digital-first financial products that are simple, accessible, and affordable. Drawing on our in-house AI/ML capabilities, technology, and product expertise, Navi is dedicated to building delightful customer experiences.
Founders: Sachin Bansal & Ankit Agarwal

Know what makes you a “Navi_ite” :
1.Perseverance, Passion and Commitment
• Passionate about Navi’s mission and vision
• Demonstrates dedication, perseverance and high ownership
• Goes above and beyond by taking on additional responsibilities
2.Obsession with high quality results
• Consistently creates value for the customers and stakeholders through high quality outcomes
• Ensuring excellence in all aspects of work
• Efficiently manages time, prioritizes tasks, and achieves higher standards
3.Resilience and Adaptability
• Adapts quickly to new roles, responsibilities, and changing circumstances,  showing resilience and agility

Job Summary:
We are seeking an experienced Cyber Security professional to head the Cyber Security team . The ideal candidate will be responsible for developing and implementing comprehensive security strategies to protect our organization’s information assets. This role involves overseeing security operations, managing security incidents, and ensuring compliance with relevant regulations and standards.

Key Responsibilities:
Leadership and Strategy:

• Develop and implement the overall security strategy for the organization.
• Build, Lead and mentor cyber security team, ensuring continuous development and improvement.
• Provide strategic direction and guidance on all security-related matters to senior management.

Security Operations:

• Oversees the day-to-day operations of the IT security and cloud security, including monitoring, incident response, and vulnerability management.
• Knowledge of SIEM, XDR, ASM, DMARC, IAM , cloud security, email security, CASB, DLP  is mandatory
• Experience and knowledge of managing security operations center (SOC). Proficiency with SIEM tools (e.g., Splunk, ArcSight, QRadar).
• Ability to configure, monitor, and analyze security events.
• Knowledge of threat hunting, threat modeling, and incident response.
• Ability to analyze threat data and implement proactive security measures.
• Cloud Security:Understanding of cloud security principles and best practices for AWS and Google Cloud. Experience with cloud security tools and services
• Manage and respond to security incidents and breaches, conducting thorough investigations and implementing corrective actions.

Risk Management:

• Identify, assess, and prioritize potential security risks and vulnerabilities. Experience with vulnerability assessment tools (e.g., Nessus, Qualys). Knowledge of patch management processes and remediation strategies.
• Develop and implement risk mitigation strategies and controls.
• Conduct regular security assessments and audits to ensure compliance with policies and standards.
• Policy and Compliance:
• Develop, review, and update security policies, procedures, and guidelines.
• Ensure compliance with industry standards and regulatory requirements (e.g., ISO 27001, PCI-DSS, RBI, IRDAI and SEBI).
• Coordinate and lead internal and external audits related to IT security.

Training and Awareness:

• Promote a culture of security awareness throughout the organization.

Technology and Innovation:

• Stay current with emerging security threats, technologies, and industry trends.
• Evaluate and implement new security technologies and solutions to enhance the organization’s security posture.

Qualifications:
Education:

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Relevant certifications such as CISSP, CISM, CISA, or equivalent are highly desirable.

Experience:

• Minimum of 10 years of experience in IT security, with at least 5 years in a Team lead role.
• Proven experience in developing and implementing security strategies and policies.
• Strong knowledge of security frameworks, standards, and best practices.

Skills:

• Excellent leadership and team management skills.
• Strong analytical and problem-solving abilities.
• Effective communication and interpersonal skills.
• Proficiency in security tools and technologies (e.g., firewalls, intrusion detection/prevention systems, SIEM).

Personal Attributes:

• High level of integrity and ethical conduct.
• Ability to work under pressure and manage multiple priorities.
• Strong attention to detail and accuracy.