Job Title: Cyber Security- Manager
Location: Noida
Department: IT Operations
Security Expert will manage the planning, implementation, and continuous enhancement of Avaada's cybersecurity program, including the establishment of a Security Operations Centre (SOC), modernization of tools and controls, policy upgrades, and alignment with global standards like ISO 27001:2022 and NIST. The role encompasses end-to-end responsibility across cybersecurity operations, strategic tooling, governance, cloud, OT/ICS, and compliance.
Key Responsibilities:
Security Operations Centre (SOC) Setup & Management
- Design, plan, and manage the Security Operation Centre (SOC) aligned with business needs.
- Define log sources, event flows, SIEM integration points, and threat intelligence feeds.
- Develop operational playbooks, escalation workflows, shift schedules, and knowledge base documents.
- Implement SOC KPIs (MTTD, MTTR, False Positive Rates, etc.) and periodic SOC effectiveness reviews.
- Coordinate with IT, network, and cloud teams for 24/7 monitoring enablement.
- Perform ongoing tuning of correlation rules, alerts, and response procedures.
- Support audits by ensuring SOC processes are documented and control evidence is maintained.
Cybersecurity Operations Management
- Manage threat detection, incident response, vulnerability remediation, and endpoint protection.
- Oversee daily security alerts, logs, and forensic investigations using existing platforms.
- Track zero-day threats, malware trends, and APT behavior impacting the renewable energy sector.
- Coordinate triage of cyber incidents and manage incident response teams during escalations.
- Manage KPIs for threat detection, incident closure, and endpoint compliance across locations.
Security Strategy, Roadmap & Modernization
- Prepare and maintain Avaada’s Cybersecurity Roadmap with quarterly, half yearly and annual goals.
- Identify security gaps, outdated tools, or manual processes for modernization or automation.
- Benchmark current posture against global security trends, risks, and industry best practices.
- Coordinate with leadership for board-level reporting and long-term security investment planning.
- Ensure alignment of the roadmap with IT initiatives, OT expansion, and cloud-first transformation.
Infrastructure, Cloud & Identity Security
- Ensure infrastructure and cloud services follow secure-by-design principles.
- Implement and monitor identity and access controls across cloud infrastructure and internal tools.
- Review firewall policies, VPN configurations, and segmentation zones for security gaps.
- Collaborate with cloud architects to align workloads with CIS Benchmarks and cloud-native controls.
- Enforce identity lifecycle management and privileged access workflows.
OT/ICS & Plant Cybersecurity
- Manage cyber risk assessments for OT environments, SCADA systems, and substations.
- Oversee segmentation between IT and OT networks (e.g., firewalls, DMZ, whitelisting).
- Coordinate security hardening and asset inventory for field-level equipment.
- Implement monitoring tools for critical energy infrastructure events and access.
- Ensure physical security controls integrate with cybersecurity systems where feasible.
- Plan cybersecurity drills and simulations for plant-level scenarios.
Awareness & Cyber Hygiene
- Conduct ongoing cybersecurity training, phishing simulations, and e-learning modules.
- Regularly update content based on real-world threats and incidents.
- Track and report user participation, risk scores, and improvement areas.
- Promote a security-first culture across employees, vendors, and partner ecosystems.
- Run executive awareness sessions to foster top-down risk ownership.
Qualifications & Skills:
Bachelor's/Master’s degree in IT, Computer Science, or a related field. 10+ years of experience in Cyber Security with At least 5 years in a cybersecurity leadership or specialist role, managing teams, SOC operations, or enterprise-wide security programs.
Certifications : Either 2 or more of the following
Strong understanding of
- Enterprise security architecture and secure network design
- Security tools (SIEM, XDR, SOAR, UEBA, PAM)
- Cloud Security
- Experience with Cloud security OT/ICS/SCADA cybersecurity (preferred in energy/renewable sector) is a plus
Proven experience in
- Managing cybersecurity frameworks (ISO/IEC 27001, NIST CSF, CIS)
- Threat detection and response (SOC, SIEM, SOAR)
- Endpoint, cloud, and application security controls
- Excellent problem-solving, communication, and leadership skills.
