Job Description: Senior Associate – Business Finance About NPCI and NBSL – National Payments Corporation of India (NPCI), an umbrella organization for retail payments in India, is an initiative of Reserve Bank of India (RBI) and Indian Banks’ Association (IBA) and is authorized under the provisions of the Payment and Settlement Systems Act, 2007 for providing payment and settlement systems in India. Considering the utility nature of NPCI, it has been incorporated as a “Not for Profit” Company under the provisions of Section 25 of Companies Act 1956 (now Section 8 of Companies Act 2013), with an intention to provide best in class digital payment infrastructure by creation of efficient and innovative retail payment platforms. NPCI has recently set up its wholly owned subsidiary NPCI Bhim Services Limited (NBSL) with the objective to focus on the growth and expansion of BHIM App. Bharat Interface for Money (BHIM) is a payment app that lets you make simple, easy and quick transactions using Unified Payments Interface (UPI). You can make direct bank payments to anyone on UPI using their UPI ID or scanning their QR with the BHIM app. You can also request money through the app from a UPI ID. NPCI BHIM Services Limited (NBSL), has recently launched Bharat Interface for Money (BHIM) 3.0 which represents its third evolution since its launch in 2016 by Prime Minister Narendra Modi. The new BHIM 3.0 app offers customer friendly and more intuitive experience. NPCI / NBSL is an Equal Opportunity Employer. Position : Senior Associate – Business Finance Place of posting : Mumbai Oberoi Commerz III Office Experience : - 3+ years Qualification : CA / MBA Team handling: Team player working in collaboration with Parent/group and cross functional teams. Key Responsibilities: Review, monitor all financial functions i.e., AR, AP, GL, Tax, MIS Reporting, and Treasury by overseeing in collaboration and coordination with Parent/group entity. Drive closure of monthly financial reporting, including balance sheets, Profit and Loss statements, and cash flow statements. Manage cash flow, forecasting, and treasury operations in consultation with Parent entity. Collaborate with cross-functional teams to drive business outcomes Develop and maintain financial models, forecasts, and budgets Identify areas for process improvements, automation and implement changes as needed Develop and implement financial strategies to drive business growth and profitability Analyse financial data to identify trends, risks, and opportunities for improvement Ensure compliance with financial regulations and industry standards Thorough understanding of process guidelines and policies laid down to ensure accuracy, and compliance. Review of TDS / GST / Input Credit working and ensure compliance on timelines and accuracy. Ensure GST, MSME and other law compliances from time to time. To ensure no major Audit observations and timely response and closure. To collate and review all the required schedules for Audit and month closing. To Prepare and review MIS Tracker related to all functional areas daily. Train Team members in case of churn and drive quality deliverables from the team members. Documentation and Review of existing processes from time to time and update basis the needs. Drive automation and process improvements and analytical dashboards. Monitor and Review Creditors, Open advances, and other open balances both in vendors and employees and taking timely action for clean-up. Preparation of Board Note agenda along with supporting’s. Requirements: Chartered Accountant (CA) or Master of Business Administration (MBA) in Finance Minimum 4+ years of experience in finance, preferably in a fintech startup Strong knowledge of financial accounting, reporting, and analysis Excellent analytical, problem-solving, and communication skills Proficient in financial software and systems, such as ERP (Preferable Microsoft D-365), accounting packages, and spreadsheet tools. Ability to work in a fast-paced environment and meet deadlines Strong leadership and team management skills Knowledge of financial regulations and compliance What We Offer: Competitive salary and benefits package Opportunity to work with a fast-growing fintech startup Collaborative and dynamic work environment Professional development and growth opportunities Show more Show less

Role and Responsibilities: As the Head/Incharge of Information Security for NBSL, this role would report into the Group CISO. The primary focus of this role is to secure the mobile application and other software assets of NBSL. Work with existing engineering teams on securing the architecture of new features/capabilities and provide design guidance Working knowledge of mobile app security controls such as RASP Provide Information security requirements as part of the sprint cycle Develop technical solutions to help mitigate security vulnerabilities. Analyze vulnerabilities reported to exist on the Android/IOS Platform. Perform security code analysis and design reviews. Provide security and secure coding practices training to development team. Conduct research to identify new attack vectors against Android and IOS application. Security architecture review and design guidance. Qualifications: Bachelor's or master's degree in computer science, Information Security, or a related field. Skills: Strong mobile application security engineering background Must have general programming expertise and software or web development experience Proficient in Engineering custom-built Android and iOS apps Experience in authentication and encryption methods, including OAuth and Public Key Infrastructure (PKI) Ability to perform Threat modelling and risk assessment of mobile and web apps 5+ years of Web and Mobile Application Security testing Experience 2+ years of hand-on experience in DevSecOps workflows and CI/CD pipelines Deep familiarity with the OWASP Top 10 and other security concerns for web/mobile applications Deep understanding of SAST, DAST, SCA Scanning practices. Scripting and Programming skills (E.g: Python, Perl, Bash, Ruby, PowerShell, react etc.) Hands on experience in security tools like, Burp suite, OWASP ZAP, MobSF, Frida, Checkmarx, SonarQube etc. Certifications (any two): CSSLP, eMAPT, CEH, OSWA, OSCP, CPTS, eWPTX, KCSA, GMOB, GWEB (Good to Have: OSWE, CWEE, CISSP, CKS)

Role and Responsibilities: As the Head/Incharge of Information Security for NBSL, this role would report into the Group CISO. The primary focus of this role is to secure the mobile application and other software assets of NBSL. Work with existing engineering teams on securing the architecture of new features/capabilities and provide design guidance Working knowledge of mobile app security controls such as RASP Provide Information security requirements as part of the sprint cycle Develop technical solutions to help mitigate security vulnerabilities. Analyze vulnerabilities reported to exist on the Android/IOS Platform. Perform security code analysis and design reviews. Provide security and secure coding practices training to development team. Conduct research to identify new attack vectors against Android and IOS application. Security architecture review and design guidance. Qualifications: Bachelor's or master's degree in computer science, Information Security, or a related field. Skills: Strong mobile application security engineering background Must have general programming expertise and software or web development experience Proficient in Engineering custom-built Android and iOS apps Experience in authentication and encryption methods, including OAuth and Public Key Infrastructure (PKI) Ability to perform Threat modelling and risk assessment of mobile and web apps 5+ years of Web and Mobile Application Security testing Experience 2+ years of hand-on experience in DevSecOps workflows and CI/CD pipelines Deep familiarity with the OWASP Top 10 and other security concerns for web/mobile applications Deep understanding of SAST, DAST, SCA Scanning practices. Scripting and Programming skills (E.g: Python, Perl, Bash, Ruby, PowerShell, react etc.) Hands on experience in security tools like, Burp suite, OWASP ZAP, MobSF, Frida, Checkmarx, SonarQube etc. Certifications (any two): CSSLP, eMAPT, CEH, OSWA, OSCP, CPTS, eWPTX, KCSA, GMOB, GWEB (Good to Have: OSWE, CWEE, CISSP, CKS)