Cyber Security

Job Description

Job Title: Cyber Security- Manager

Location: Noida

Department: IT Operations

Security Expert will manage the planning, implementation, and continuous enhancement of Avaada's cybersecurity program, including the establishment of a Security Operations Centre (SOC), modernization of tools and controls, policy upgrades, and alignment with global standards like ISO 27001:2022 and NIST. The role encompasses end-to-end responsibility across cybersecurity operations, strategic tooling, governance, cloud, OT/ICS, and compliance.

Key Responsibilities:

Security Operations Centre (SOC) Setup & Management

• Design, plan, and manage the Security Operation Centre (SOC) aligned with business needs.
• Define log sources, event flows, SIEM integration points, and threat intelligence feeds.
• Develop operational playbooks, escalation workflows, shift schedules, and knowledge base documents.
• Implement SOC KPIs (MTTD, MTTR, False Positive Rates, etc.) and periodic SOC effectiveness reviews.
• Coordinate with IT, network, and cloud teams for 24/7 monitoring enablement.
• Perform ongoing tuning of correlation rules, alerts, and response procedures.
• Support audits by ensuring SOC processes are documented and control evidence is maintained.

Cybersecurity Operations Management

• Manage threat detection, incident response, vulnerability remediation, and endpoint protection.
• Oversee daily security alerts, logs, and forensic investigations using existing platforms.
• Track zero-day threats, malware trends, and APT behavior impacting the renewable energy sector.
• Coordinate triage of cyber incidents and manage incident response teams during escalations.
• Manage KPIs for threat detection, incident closure, and endpoint compliance across locations.

Security Strategy, Roadmap & Modernization

• Prepare and maintain Avaada's Cybersecurity Roadmap with quarterly, half yearly and annual goals.
• Identify security gaps, outdated tools, or manual processes for modernization or automation.
• Benchmark current posture against global security trends, risks, and industry best practices.
• Coordinate with leadership for board-level reporting and long-term security investment planning.
• Ensure alignment of the roadmap with IT initiatives, OT expansion, and cloud-first transformation.

Infrastructure, Cloud & Identity Security

• Ensure infrastructure and cloud services follow secure-by-design principles.
• Implement and monitor identity and access controls across cloud infrastructure and internal tools.
• Review firewall policies, VPN configurations, and segmentation zones for security gaps.
• Collaborate with cloud architects to align workloads with CIS Benchmarks and cloud-native controls.
• Enforce identity lifecycle management and privileged access workflows.

OT/ICS & Plant Cybersecurity

• Manage cyber risk assessments for OT environments, SCADA systems, and substations.
• Oversee segmentation between IT and OT networks (e.g., firewalls, DMZ, whitelisting).
• Coordinate security hardening and asset inventory for field-level equipment.
• Implement monitoring tools for critical energy infrastructure events and access.
• Ensure physical security controls integrate with cybersecurity systems where feasible.
• Plan cybersecurity drills and simulations for plant-level scenarios.

Awareness & Cyber Hygiene

• Conduct ongoing cybersecurity training, phishing simulations, and e-learning modules.
• Regularly update content based on real-world threats and incidents.
• Track and report user participation, risk scores, and improvement areas.
• Promote a security-first culture across employees, vendors, and partner ecosystems.
• Run executive awareness sessions to foster top-down risk ownership.

Qualifications & Skills:

Bachelor's/Master's degree in IT, Computer Science, or a related field. 10+ years of experience in Cyber Security with At least 5 years in a cybersecurity leadership or specialist role, managing teams, SOC operations, or enterprise-wide security programs.

Certifications : Either 2 or more of the following

• CISSP
• CISM
• CEH
• CCSP

Strong understanding of

• Enterprise security architecture and secure network design
• Security tools (SIEM, XDR, SOAR, UEBA, PAM)
• Cloud Security
• Experience with Cloud security OT/ICS/SCADA cybersecurity (preferred in energy/renewable sector) is a plus

Proven experience in

• Managing cybersecurity frameworks (ISO/IEC 27001, NIST CSF, CIS)
• Threat detection and response (SOC, SIEM, SOAR)

• Endpoint, cloud, and application security controls

• Excellent problem-solving, communication, and leadership skills.

Job Snapshot

Updated Date

Job ID

AvaadaJob1045

Department

Information Technology

Location

Noida 65, Noida, Uttar Pradesh, India

Experience

Years

Employee Type

Permanent