JOB PROFILE

Position

Location	Noida
Reporting Mgr. Name	Sushil Kumar
Department	IT Operations
Reporting Mgr. Designation	Infrastructure Head
Offered Grade

Our Purpose

At Niva Bupa, our purpose is “to give every Indian the confidence to access the best healthcare”

Our Values

• Commitment
• Innovation
• Empathy
• Collaboration
• Transparency

Proficiency Level

(Please Tick)

• L1: HEAD OF FUNCTION/BUSINESS (Sr. Leadership Team)
• L2: MANAGER OF MANAGER
• L3: MANAGER
• L4: INDIVIDUAL CONTRIBUTOR

About Niva Bupa Health Insurance Company

Niva Bupa Health Insurance Company Limited (formerly known as Max Bupa Health Insurance Company Limited) is a joint venture between Fettle Tone LLP (an affiliate of True North Fund VI LLP), a leading Indian private equity firm, and the Bupa Group, a leading international healthcare company with a legacy of providing specialized healthcare services for over 70 years.

Niva Bupa’s growth story has been phenomenal. We are one of the fastest growing Stand Alone Health Insurers in the country with a current employee strength of 7000+ with growth rate of 154% since FY 20 and growing. We are a fully integrated health insurance provider with in-house claims processing; underwriting and servicing. Our goal is to achieve more than 10000 Cr GWP By 2027 & thus requires goal oriented individuals to be a part of this exciting growth journey to achieve it.

Niva Bupa is certified Great Place to Work for the 3rd year running and aims to become one of the best workplaces in the BFSI industry.

Niva Bupa is an Equal Opportunity Employer committed to achieving diversity within its workforce, and encourages all qualified applicants to apply, irrespective of gender, age, sexual orientation, disability, culture, religious and ethnic background. At Niva Bupa 12% of our team handling roles are led by women. We welcome specially-abled professionals to join our team.

ESG: Supporting action to protect, restore and regenerate local environments for the benefit of our customers our people, our communities and wider society

For more Details visit our website- www.nivabupa.com

Job Summary

We are seeking a highly organized and technically adept Infrastructure Audit Lead to act as our Single Point of Contact (SPOC) for all infrastructure-related audit activities. In this role, you will bridge the gap between internal/external auditors and our core IT Infrastructure teams.

Your primary responsibility will be triaging audit points—analyzing findings, validating their actual risk, assigning accountability, and tracking remediation to completion. The ideal candidate has a strong background in IT infrastructure operations, an analytical mind for compliance/risk frameworks, and the communication skills to manage diverse stakeholders.

Key Roles & Responsibilities

• Audit Orchestration & SPOC Management: Act as the primary, central point of contact (SPOC) for all internal, external, regulatory, and client-led infrastructure audits. Coordinate audit timelines, schedule walkthroughs, and manage the end-to-end evidence collection process across networking, cloud, data centers, and endpoint management teams. Ensure all evidence provided to auditors is accurate, complete, and properly contextualized.
• Analyze and Triage: Critically review raw audit findings and points to understand the underlying technical gap.
• Risk Validation: Challenge or validate audit points based on actual operational risk and existing compensating controls.
• Ownership Assignment: Properly route validated audit points to the correct infrastructure engineering or operations teams.
• Remediation Tracking & Governance: Collaborate with technical teams to draft realistic, robust Management Action Plans (MAPs) and Root Cause Analyses (RCAs). Monitor remediation progress vigorously, ensuring all audit points are closed well before their target due dates. Establish regular governance dashboards and KPIs to report audit posture, overdue items, and systemic risks to IT leadership.
• Continuous Compliance: Identify recurring audit themes and work with infrastructure teams to build long-term, automated controls to prevent reoccurrence. Maintain a centralized, searchable repository of all historical audit data, evidence templates, and past findings.

Key Requirements – Education & Certificates

Bachelor’s degree – BTech or equivalent

Key Requirements - Experience & Skills

• Technical & Audit experience: 5–8+ years of experience in IT Infrastructure operations, IT Risk, IT Audit, or Cyber Security Compliance.
• Domain Knowledge: Solid foundational understanding of infrastructure concepts (e.g., Active Directory, Patch Management, IAM, Network Segmentation, Cloud Security [AWS/Azure], Backup & Disaster Recovery).
• Frameworks: Familiarity with industry audit and security standards (e.g., ISO 27001, SOC 2, NIST, CIS Controls, COBIT, or SOX ITGC).
• Negotiation & Influence: Proven ability to negotiate the scope of audit findings with auditors and influence busy engineering teams to prioritize remediation.
• Project Management: Excellent tracking and organization skills; experience using tools like Jira, ServiceNow (GRC modules), or Archer is highly preferred.
• Communication: Ability to translate complex technical jargon into clear risk-based language for auditors and executives.

Nice to have

• CISA (Certified Information Systems Auditor)
• CRISC (Certified in Risk and Information Systems Control)
• ITIL Foundations
• PMP or Scrum Master certifications

Behavioral

• Ownership and Accountability: Takes full responsibility for Audits.
• Collaboration and Influence: Works effectively across internal teams and external vendors.
• Communication: Communicates technical issues clearly to both technical and non-technical audience.
• Analytical Thinking: Uses structured thinking and data-driven approach to solve problems, assess risks and make recommendations.
• Adaptability: Thrives in dynamic environment.

Key Functional Competencies

Functional competency	Beginner	Intermediate	Expert

NBHI Core Competencies

Behavioral Competency	Beginner	Intermediate	Expert

Targets/ KRA/ KPI

Goals	Measures of Success	Weightage
Company MOS	Defined as per Company Policy	Defined as per Company Policy

Functional Hierarchy/ Reporting Matrix

Hiring Manager has to inform the TA Team about the Reporting manager’s grade and the candidate’s grade. (Reporting Manager and Prospective New Hire Grade to be clearly mentioned below)