Job Description
Hello Aspirants,
This is one of the exiting opportunity with one of the topmost conglomerate in Mumbai Location for the position of Head - Information & Security.
Experience:
18.00 - 25.00 yrs
Job Location:
Mumbai (Work from Office)
Job Description:
1. Role Overview
The Head - Information & Security will be responsible for establishing and securing the complete digital and information backbone of the AI Data Centre business.
This includes:
Setting up the enterprise-wide ERP and business systems.
Designing the technology architecture for corporate, project, and operational systems.
Establishing cybersecurity governance and compliance across IT, OT, and cloud environments.
Ensuring that the digital infrastructure supports project execution, operations, finance, and customer engagement at hyperscaler-grade reliability and security.
2. Key Responsibilities
A. Enterprise IT Architecture & ERP Implementation
Define and implement the Enterprise Architecture Roadmap covering corporate, project, and operations functions.
Lead the end-to-end implementation of a fit-for-purpose ERP system — covering Finance, Supply Chain, HR, Projects, and Asset Management.
Select and oversee the ERP platform (SAP S/4HANA, Oracle Fusion, or TCS proprietary ERP) based on scalability and cost optimization.
Ensure ERP integration with other business systems — PMO dashboards, DCIM, SCADA, finance models, and procurement portals.
Establish data governance frameworks for master data, access control, and reporting consistency.
Develop a Management Information System (MIS) with real-time visibility into KPIs (cost, schedule, uptime, safety, financial performance).
Build enterprise-grade collaboration and workflow systems (email, document management, project collaboration, internal communication tools).
B. IT Infrastructure, Networks & Cloud Systems
Design and deploy robust IT infrastructure across headquarters, regional offices, and data centre sites.
Implement secure and redundant network connectivity, integrating on-premise and cloud-based systems.
Establish IT operations centres for network, server, and end-user support.
Implement hybrid cloud architecture for enterprise workloads, with data residency compliance.
Develop and enforce data backup, archival, and recovery policies.
C. Cybersecurity Governance & Security Functions
Build a comprehensive cybersecurity framework that aligns with ISO 27001, SOC 2, NIST, and India’s CERT-In regulations.
Set up a Security Operations Centre (SOC) for 24×7 monitoring of IT, OT, and cloud assets.
Implement Zero-Trust Architecture across all digital assets and networks.
Oversee identity and access management (IAM), endpoint protection, and data encryption standards.
Conduct vulnerability assessment and penetration testing (VAPT) on all critical systems.
Coordinate cybersecurity readiness with hyperscaler clients (Google, AWS, OpenAI, Microsoft).
Maintain incident response playbooks and conduct simulated cyberattack drills.
D. Digital Integration Across Project Lifecycle
Integrate digital systems across design, construction, and operations workflows — connecting the ERP with the DCIM and PMO systems.
Ensure seamless data flows between engineering design (BIM), construction progress, cost tracking, and asset management.
Implement field mobility solutions for project teams — including digital inspection tools, photo logs, and asset tagging.
Develop AI- and ML-driven analytics for predictive maintenance and energy optimization.
Enable real-time dashboards for leadership and investor reporting through unified data pipelines.
E. Data Governance, Compliance & Risk Management
Develop data classification and retention policies.
Ensure compliance with India’s Digital Personal Data Protection Act (DPDPA 2023) and global privacy norms (GDPR, CCPA).
Implement data-loss prevention (DLP), encryption, and secure transmission protocols.
Maintain comprehensive audit trails for all business systems.
Manage digital risk through continuous monitoring, risk assessments, and internal audits.
F. Business Continuity & Disaster Recovery
Develop Business Continuity Plans (BCP) and Disaster Recovery (DR) systems for corporate IT and operational technology (OT).
Ensure multi-site redundancy for ERP, network, and security systems.
Define and test Recovery Time Objective (RTO) and Recovery Point Objective (RPO) metrics across systems.
Conduct semi-annual BCP/DR simulation drills.
G. Leadership & Governance
Build and lead an integrated Digital & Information Technology Organization, including IT Operations, Cybersecurity, and Data Governance teams.
Define key performance metrics for system uptime, data quality, and incident response.
Drive cultural adoption of digital-first and security-by-design principles across the organization.
3. Candidate Profile
Bachelor’s / Master’s degree in Computer Science, Information Technology, or Electronics.
18–25 years of experience in enterprise IT, digital transformation, and cybersecurity.
Proven track record in ERP implementation, IT governance, and cyber defence in infrastructure, data centres, or large industrial organizations.
Certifications: CISSP / CISM / PMP / ITIL / ISO 27001 Lead Auditor preferred.
Hands-on experience with cloud, hybrid IT, automation, and digital twin ecosystems.
Understanding of hyperscaler security requirements and data protection frameworks.
