About the Company: An Industry Association For the FinTech sector.

Reports To: Head- Regulatory Compliance (Fintech Sector)

Role Purpose:

The Sr. Manager — IT & Data Hub builds and runs the technology and data backbone of the company’s self-regulatory function. The role owns two related capabilities that the RBI Framework for SRO-FTs treats as foundational: a robust IT and surveillance infrastructure that allows the company to detect exceptions and conduct risk in good time, and a scalable data repository that anonymises, analyses and disseminates sectoral information to members, the Reserve Bank and the public.

This is a hands-on builder role rather than a pure governance role. The Manager will design data pipelines, choose and integrate tooling, work with vendors, run the analytics stack, and turn raw member submissions into the dashboards, reports and intelligence inputs that make the company credible to the RBI and useful to its members.

Key Responsibilities:

IT Infrastructure and Surveillance Architecture:

• Build and operate the company’s IT stack — member portal, data-submission rails, secure storage, identity and access management, audit logs — meeting the “robust IT infrastructure” expectations.
• Design the surveillance architecture that allows the company to detect exceptions, non-compliance, mis-selling and emerging conduct risk across member institutions — with appropriate rule libraries, alerts and case workflows for the Surveillance & Grievance team.
• Operate the member-data confidentiality regime — role-based access, encryption at rest and in transit, masking of member-identifying fields in analytical outputs, and tamper-evident audit trails.
• Run a secure, scalable cloud environment with documented disaster-recovery and business-continuity arrangements proportionate to institutional criticality.
• Ensure DPDP Act readiness — consent capture where applicable, data minimisation, retention controls, and processes for responding to data principal requests.

Data Hub, Returns and Benchmarking:

• Define and run the periodic returns framework for members — standardising schemas, frequencies, validation rules and exception handling across complaint rates, turnaround times, cyber incidents, NPAs, fraud-loss ratios and other sectoral metrics.
• Operate the anonymised peer-benchmarking service that lets members measure themselves against the industry, ensuring no single member can be re-identified from published outputs.
• Build dashboards and analytical views for the CEO, the Board’s Compliance and Oversight Committee etc.
• Produce the sectoral data publications (periodic reports, bulletins, factbooks) that establish the company as a credible sector repository.
• Provide early-warning intelligence inputs to the Reporting Manager and, through that channel, to the CEO on emerging risks, systemic issues and conduct patterns warranting attention.

Vendor and Tooling Management:

• Select, contract and manage the company’s technology and data vendors — cloud provider, data-engineering platform, BI and visualisation tooling, surveillance/ RegTech partners, security tooling.
• Maintain a credible technology budget with clear unit economics, vendor performance reviews, and an ongoing build-vs-buy stance proportionate to a not-for-profit Association.
• Drive technical due diligence on third-party services that touch member data, including security questionnaires, penetration-test reviews and contractual data-handling controls.

Engagement with Members, RBI and Other Regulators:

• Co-design data schemas and submission rails with member compliance and technology teams so that data is usable for members and analytically rich for the company.
• Support the Reporting Manager in preparing the RBI Annual Report, periodic returns and ad-hoc data inputs; respond to RBI inspection and audit queries within agreed timelines.
• Provide data and analytical inputs for engagement with SEBI, IRDAI, PFRDA, MeitY and the Ministry of Finance on activity-based regulatory perimeters.
• Maintain member helpdesk and onboarding for the Data hub portal — making it easy for members to submit, query and reconcile their data.

Governance, Documentation and Continuous Improvement:

• Maintain documentation for all data definitions, pipelines, dashboards, controls and access reviews — to a standard that withstands RBI inspection.
• Run annual independent audits of the IT environment (information security, application security, controls testing) and remediate findings.
• Stay current with FinTech regulatory developments, RegTech innovation and supervisory analytics practice in India and comparable jurisdictions; propose proportionate upgrades to the company’s stack.

Essential Qualifications:

• Bachelor’s or Master’s degree in Computer Science, Information Technology, Data Science, Engineering, Statistics, Econometrics or a closely related discipline from a reputed institution.
• Professional credentials such as CISA, CISM, CISSP, AWS / Azure / GCP certifications or recognised data-engineering certifications are an added advantage.

Essential Experience:

• 7–10 years of total experience, with at least 3–4 years owning data platforms, regulatory reporting infrastructure, or supervisory analytics for a regulated financial-services entity, RegTech, FinTech, large bank/NBFC or a regulator/SRO.
• Hands-on experience designing data pipelines (SQL, Python, modern ELT tooling such as dbt / Airflow / Dagster), warehousing on a major cloud platform, and building BI/ dashboarding outputs in Power BI, Tableau, Looker or equivalent.
• Working knowledge of information-security and data-protection controls in a regulated environment — ISO 27001 / SOC 2 control families, encryption, IAM, secure SDLC, audit logging.
• Demonstrated ability to translate regulatory and business requirements into data schemas, validation rules and analytical outputs without losing fidelity.

Desirable Experience:

• Exposure to the RBI’s regulatory and supervisory reporting expectations or to comparable regulators’ data frameworks.
• Experience with FinTech sector domains — digital lending, payments, account aggregator, insurtech, wealth-tech — and familiarity with sector-specific risk metrics.
• Familiarity with the DPDP Act, India’s Digital Public Infrastructure (UPI, Account Aggregator, ONDC, OCEN, DigiLocker) and RBI’s digital-lending and FinTech guidelines.
• Experience selecting and managing RegTech / SupTech vendors and contracted technology partners.

Skills and Attributes:

• Strong hands-on builder; comfortable getting into pipelines, schemas and dashboards rather than only managing them.
• Sharp analytical mind; able to interrogate data, spot anomalies and produce intuitive visualisations for non-technical audiences.
• Integrity and discretion — handles confidential member data with the standards expected of an industry association.
• Clear written and verbal communication; able to translate technical work for the Reporting Manager, the Board and member CXOs.
• Pragmatic, not over-engineered; ability to deliver a credible Year-1 stack at not-for-profit unit economics, then scale.
• Collaborative; works well with member compliance and technology teams, vendors, auditors and fellow teammates.

Key Performance Indicators:

• Year-1 readiness of the data hub — member portal, returns schemas, validation rules and warehouse operational across the core member base.
• Surveillance architecture live, with documented rule library, alert volumes, false-positive rates and case handover quality to the Surveillance & Grievance team.
• Quality and timeliness of RBI submissions — Annual Report, periodic returns, ad-hoc data requests — with zero adverse observations on data integrity.
• Member adoption of the portal — submission completeness, on-time submission rate, and member satisfaction with the data and benchmarking outputs.
• Information-security posture — clean audit findings on access controls, encryption, logging, vendor due diligence and DPDP readiness.
• Pick-up and citation of the company’s published sectoral data and benchmarking outputs by RBI, peer regulators, members and credible third parties.
• Cost discipline — building and running the technology stack within an agreed budget and unit-economics targets.