Senior Manager - IT Auditor

Hiring Manager :: Sachin Shah

Team :: Governance and Control

About Navi 

Navi is one of the fastest-growing financial services companies in India providing Personal & Home Loans, UPI, Insurance, Mutual Funds, and Gold. Navi's mission is to deliver digital-first financial products that are simple, accessible, and affordable. Drawing on our in-house AI/ML capabilities, technology, and product expertise, Navi is dedicated to building delightful customer experiences.

Founders: Sachin Bansal & Ankit Agarwal 

Know what makes you a “Navi_ite” : 

1.Perseverance, Passion and Commitment 

• Passionate about Navi’s mission and vision 

• Demonstrates dedication, perseverance and high ownership 

• Goes above and beyond by taking on additional responsibilities 

2.Obsession with high quality results 

• Consistently creates value for the customers and stakeholders through high quality outcomes 

• Ensuring excellence in all aspects of work 

• Efficiently manages time, prioritizes tasks, and achieves higher standards 

3.Resilience and Adaptability 

• Adapts quickly to new roles, responsibilities, and changing circumstances,  showing resilience and agility 

Roles and Responsibilities:

A. Strategic

• Own the development and implementation of the risk-based annual IT audit plans of various entities of Navi and ensure they are responsive to and aligned with the risk profile of the organization.
• Lead the annual and ongoing evaluations of IT infrastructure and establish controls and audit procedures to identify areas of risk or non-compliance of various entities and map with auditable entities / functions.
• Ensure proper resourcing for implementation of the plan, and adjust the plan as needed in response to changes in Navi’s business risks, operations, programs, systems and controls.

B. Process development

• Develop and update audit tools by considering IIA guidelines & audit manual, and different operational, legal and environmental changes of the entities.
• Proactively inform senior management of significant risks or exposures related to internal controls, compliance and governance requiring prompt attention.
• Provide feedback and recommendations on IT & data risks and improving operational efficiencies and processes where appropriate.

C. Leadership

• Maintain good relationships and work with a collaborative approach with all key stakeholders across various entities.
• Oversee Internal Audit’s participation in critical business and technology initiatives and projects ensuring that audit’s perspective is effectively voiced and appropriate controls are designed and implemented on a proactive basis.
• Serve as a “thought leader” with respect to IT risk management and internal control best practices.

D. Operational

• Continuously inspect and assess various elements of the company’s information systems and implement audit test plans.
• Identify and evaluate the IT risk exposure and recommend remediation strategies.
• Review security / digital measures taken by line function (CTO, CISO, Tech Leader and Line function) / new business initiatives.
• Coordinate with external auditors and regulators and provide independent assurance on the IT framework and associated controls.
• Track the issues and actions management process and ensure timely closure.
• Identify early warning signals in IT areas and identify potential fraud scenarios for in-depth review and investigation.
• Benchmark the company’s systems to other available technologies on the market and strengthen the company further through use of technology.

E. Reporting

• Issue all IT Audit reports in a timely manner ensuring the reports are clear, concise, identify root causes with practical solutions, and ultimately provide value to management.
• Ensure timely delivery of different MIS, reports, and data to assist the Function Head.
• Prepare materials and make presentations to the audit committee and management independently.

Experience & Education:

• CISSP, CISA, CISM, GIAC, PPM, PMP, DISA or equivalent IT audits related qualification is preferred.
• 7 or more years’ of experience in IT audits preferred (with min 2-3 years in a team management role).
• Strong knowledge of IT security and infrastructure. Experience of working / auditing in agile product management environments.
• 3 to 5 years of Fintech or NBFC industry experience with good expertise of RBI and / or IRDAI guidelines on IT frameworks & sensitive data protection is preferred (not mandatory).