Head of Cyber Security

JOB PURPOSE:

The Head of Cyber Defence & Command Center (CDCC) will lead Aditya Birla Group’s state-of-the-art cyber defense operations, safeguarding 140+ locations, 40,000+ endpoints, and 4,000+ crown jewels across the globe. This pivotal role manages a team of 30+ cybersecurity experts in a 24/7 “follow-the-sun” model, leveraging advanced AI/ML-driven analytics, self-healing SOAR automation, and federated threat intelligence to proactively detect, contain, and respond to sophisticated cyber threats with minimal business disruption.

Beyond overseeing real-time threat management and incident response, the Head will drive a comprehensive vulnerability management program, establishing a Center of Excellence for ethical hacking, proactive risk identification, and remediation across IT and OT environments. This leader will ensure that cybersecurity initiatives are tightly integrated with ABG’s business strategy and sustainability goals, fostering a culture of innovation and continuous improvement while enabling operational resilience, regulatory compliance, and business continuity in an ever-evolving threat landscape.

Role Context

1. Technology Diversity: Securing a mix of legacy systems, modern IT, OT, cloud, and IoT, each with distinct vulnerabilities.
2. Regulatory Complexity: Navigating conflicting and rapidly changing cybersecurity and data privacy regulations across countries.
3. Consistent Security Posture: Ensuring uniform threat management and response across locations with varying cybersecurity maturity.
4. Talent & Coordination: Attracting, retaining, and upskilling cyber talent while maintaining seamless 24/7 global operations.
5. Business Alignment: Aligning security initiatives with diverse business needs and risk profiles without disrupting operations.

Key Result Areas

Supporting Actions

CDCC & VM Strategy

1. Define and execute the strategic vision for the CDCC and Vulnerability Management Center of Excellence, aligning with ABG’s business and ESG goals.
2. Develop and maintain a multi-year roadmap for cyber defence capabilities, including automation, AI/ML integration, and proactive vulnerability management.
3. Ensure the continuous evolution of CDCC operations to address emerging threats and regulatory requirements.
4. Foster a culture of innovation, continuous improvement, and knowledge sharing within the CDCC and VM teams.
5. Collaborate with manufacturing, IT, and business leaders to ensure cybersecurity strategies are aligned with operational excellence and sustainability objectives.

Threat Management & Intelligence

1. Oversee real-time monitoring and analysis of security events across all ABG locations and endpoints.
2. Direct the deployment and enhancement of AI/ML models for detecting insider threats and advanced persistent attacks through behavioral analytics.
3. Lead global threat intelligence initiatives, including federated threat correlation and integration of dark-web feeds.
4. Supervise expert threat hunting activities to proactively identify and mitigate sophisticated threats.
5. Ensure timely dissemination of actionable threat intelligence to relevant stakeholders and business units.

Incident Response & SOAR Automation

1. Manage end-to-end incident response processes, ensuring rapid detection, containment, and eradication of cyber threats.
2. Oversee the development and refinement of SOAR (Security Orchestration, Automation, and Response) playbooks, enabling self-healing automation and auto-containment of threats.
3. Ensure incident response actions minimize disruption to manufacturing and production environments.
4. Conduct post-incident reviews and drive root-cause analysis to strengthen cyber resilience.
5. Maintain readiness for major cyber incidents, including regular drills, tabletop exercises, and scenario planning.

Vulnerability Management & Ethical Hacking

1. Establish and lead the Vulnerability Management Center of Excellence, driving proactive identification and remediation of vulnerabilities.
2. Oversee regular vulnerability assessments, penetration testing, and ethical hacking exercises across ABG’s digital landscape.
3. Prioritize remediation of vulnerabilities affecting crown jewels and critical assets, ensuring minimal risk exposure.
4. Collaborate with IT and OT teams to ensure timely patching and mitigation of discovered vulnerabilities.
5. Report on vulnerability trends, remediation progress, and risk posture to senior management.

AI, Automation, and Engineering Excellence

1. Champion the integration of AI/ML-driven analytics and automation within CDCC operations.
2. Drive the development and deployment of self-healing automation solutions to enhance cyber defence capabilities.
3. Collaborate with manufacturing and engineering teams to embed cybersecurity into production processes and OT environments.
4. Ensure robust engineering standards and best practices in the design, implementation, and maintenance of cybersecurity solutions.
5. Evaluate emerging technologies and tools for continuous advancement of CDCC capabilities.

CDCC Governance, Compliance, and ESG Alignment

1. Ensure CDCC and VM operations comply with global cybersecurity regulations, standards, and ABG’s internal policies.
2. Align CDCC with ABG’s sustainability and ESG objectives, preventing cyber-induced incidents that could impact business continuity and reputation.
3. Develop and maintain comprehensive CDCC metrics, dashboards, and reporting mechanisms for executive oversight.
4. Lead regular audits, compliance assessments, and risk reviews across the CDCC landscape.

Experience - 15 to 20 years in Cyber Security domain

Location - Mumbai