DGM - OT Security

About of the Company:

Agratas is a wholly owned subsidiary of Tata Sons. We design, develop and manufacture high-quality, high-performance, sustainable batteries applied to multiple use cases in the mobility and energy sectors, to match our customers’ requirements. Agratas is a scale-up business with a start-up mentality, driven by our pursuit of green growth and technological progress. We develop next-generation battery technologies at our state-of-the-art R&D Innovation Hubs in India and the UK.

Job Summary:

We are seeking a highly skilled and experienced Operational Technology (OT) .Cybersecurity Leader with minimum 8 years of experience in OT security domain to join our team. In this role, you will be responsible for ensuring the security and resilience of our organization's operational technology systems, including industrial control systems (ICS), supervisory control and data acquisition (SCADA) systems, and other critical infrastructure. The ideal candidate will have a deep understanding of OT cybersecurity principles, strong leadership skills, and experience in securing OT environments.

Responsibilities:

Key Accountabilities and Responsibilities

OT Cybersecurity Strategy and Planning:

• Develop and implement an OT cybersecurity strategy that aligns with business objectives and regulatory( India and UK) requirements.
• Define policies, procedures, and standards for securing OT systems and infrastructure.

OT Risk Assessment and Management:

• Conduct risk assessments of OT systems and environments to identify vulnerabilities and potential threats.
• Develop and implement risk management strategies and controls to mitigate identified risks.

Security Controls and Monitoring:

• Design and deploy security controls and monitoring solutions to protect OT systems from cyber threats and attacks.
• Implement intrusion detection and prevention systems (IDPS), network segmentation, and other security measures to enhance OT security.

Incident Response and Recovery:

• Develop and maintain incident response plans and procedures specific to OT environments.
• Provide leadership and support during OT security incidents, including analysis, containment, and remediation.

Security Awareness and Training:

• Raise awareness of OT cybersecurity risks and best practices among stakeholders and OT personnel.
• Provide training and education on OT security policies, procedures, and controls.

Regulatory Compliance:

• Ensure compliance with relevant regulatory requirements and industry standards for OT cybersecurity, such as NERC CIP, IEC 62443, and ISA/IEC 62443.

Vendor and Third-Party Management:

• Manage relationships with vendors and third-party providers of OT systems and services to ensure security requirements are met.
• Conduct security assessments of third-party vendors and suppliers.

OT Security Architecture:

• Design and implement OT security architectures that incorporate defence-in-depth principles and resilience against cyber threats.
• Collaborate with OT engineers and stakeholders to integrate security controls into OT systems and infrastructure.

Knowledge, Skills and Experience

Essential:

• Extensive experience in OT cybersecurity, including securing industrial control systems (ICS) and SCADA systems.
• Strong understanding of OT protocols, standards, and technologies, such as Modbus, DNP3, and OPC.
• Experience with risk assessment methodologies and tools specific to OT environments.
• Knowledge of regulatory requirements and compliance standards for OT cybersecurity.
• Excellent leadership and communication skills, with the ability to work effectively with cross-functional teams and OT personnel.
• Strong analytical and problem-solving abilities, with a focus on identifying and mitigating OT security risks.

Desired

• Advanced degree or relevant certifications (e.g., GICSP, CISSP, ISA/IEC 62443) preferred.

Role Specific Qualifications:

• Bachelor's degree in Information Security, Computer Science, or related field.