Infrastructure & Security Head

The Head - Cyber Security & Cloud Infrastructure will be responsible for defining, implementing, and governing the organization's cyber security, cloud infrastructure, IT & OT security posture. The role ensures protection of IT and OT environments, data, applications, cloud platforms, and enterprise infrastructure while maintaining compliance, resilience, and business continuity.

Key Responsibilities:

1. Cyber Security & IT Security:

- Own the enterprise-wide cyber security strategy covering IT, cloud, and OT environments.

- Design, implement, and manage network, firewall, and perimeter security.

- Ensure server security across on-premise and cloud infrastructure.

- Oversee SAP and enterprise application security, including access controls and vulnerability management.

- Manage cloud infrastructure security, IAM, and compliance controls.

- Implement end-user security measures including endpoint protection, EDR, and device hardening.

- Govern administrative access and remote connectivity security (VPN, privileged access).

- Ensure backup security, ransomware protection, and disaster recovery readiness.

- Lead data security initiatives, including Data Leak Prevention (DLP) and data classification.

2. Cloud Infrastructure Management:

- Lead design, deployment, and operations of cloud infrastructure platforms (IaaS, PaaS, SaaS).

- Optimize cloud performance, cost, availability, and security.

- Define and enforce cloud governance, security baselines, and best practices.

- Ensure high availability, scalability, and business continuity through DR and BCP planning.

3. OT (Operational Technology) Security:

- Establish and manage OT security framework aligned with manufacturing and plant environments.

- Secure OT networks, firewalls, and segmentation between IT and OT systems.

- Ensure security of SCADA, PLC, DCS, and OT servers.

- Implement OT endpoint security and monitoring solutions.

- Lead risk assessments and incident response for OT systems in coordination with plant teams.

4. Governance & Cyber Security Committee:

- Act as a key member of the Cyber Security Governance Committee.

- Drive cyber risk assessments, audits, and remediation plans.

- Ensure compliance with regulatory, statutory, and industry standards.

- Report cyber security posture, incidents, and risks to senior management.

5. Policies, Standards & Documentation:

- Develop, implement, and maintain Cyber Security Policies, Standards, and SOPs.

- Define Infrastructure Policies and Governance Frameworks.

- Ensure documentation, version control, and periodic policy reviews.

- Align policies with global best practices and organizational requirements.

6. End-User Awareness & Training:

- Design and execute cyber security awareness and training programs.

- Conduct phishing simulations, security drills, and tabletop exercises.

- Promote a strong security culture across corporate offices and plants.

Key Skills & Competencies:

- Strong expertise in Cyber Security, Cloud Security, IT Infrastructure, and OT Security

- Hands-on knowledge of network security, firewalls, IAM, endpoint security, SIEM, SOC

- Experience with SAP security and enterprise applications

- Strong understanding of manufacturing / plant OT environments

- Excellent governance, risk management, and stakeholder communication skills

- Leadership capability to manage vendors, partners, and internal teams

Preferred Certifications:

- CISSP / CISM / CCSP

- ISO 27001 Lead Implementer / Auditor

- Cloud certifications (AWS / Azure / GCP Security)

- OT security certifications (IEC 62443 - preferred)