Job Description

About Business:

Adani Group: Adani Group is a diversified organisation in India comprising 10 publicly traded companies. It has created a world-class logistics and utility infrastructure portfolio that has a pan-India presence. Adani Group is headquartered in Ahmedabad, in the state of Gujarat, India. Over the years, Adani Group has positioned itself to be the market leader in its logistics and energy businesses focusing on large-scale infrastructure development in India with O & M practices benchmarked to global standards. With four IG-rated businesses, it is the only Infrastructure Investment Grade issuer in India.

Adani Power Limited (APL): Adani Power Limited (APL), a part of the diversified Adani Group, is the largest private thermal power producer in India. We have a power generation capacity of 15,250 MW comprising thermal power plants in Gujarat, Maharashtra, Karnataka, Rajasthan, Chhattisgarh, Madhya Pradesh, and Jharkhand, and a 40 MW solar power project in Gujarat.

Job Purpose: This role is responsible for shaping and executing the cyber security strategy for APL and provide support for other Business Units of Adani Group, aligning it with business objectives and risk tolerance. This role encompasses developing a comprehensive risk management framework, integrating cyber security into business processes, and maintaining governance through best practices and standards. Additionally, this role will manage relationships with external entities, vendors, and partners, ensuring the Group is at the forefront of cyber security innovation.

Head Cyber Security

Cyber Strategy and Leadership:

Lead cyber security strategy in line with Group's goals and risk tolerance, balancing risk and agility.

Develop a risk management framework to identify and prioritize cyber risks for better decision-making.

Promote cyber security integration into business processes, enhancing security awareness and resilience.

Implement cyber security best practices and standards consistently across all business units.

Connect with external cyber security entities to keep updated on threats and position the Group as a cyber security leader.

Compliance and Governance:

Develop and uphold a strong compliance controls framework.

Foster a culture of compliance and monitor policy adherence.

Lead governance process improvements aligned with Group goals.

Manage compliance training to boost organizational cyber security knowledge.

Work with audit teams for thorough IT and cyber security control audits.

Risk Management and Mitigation:

Develop and enforce cyber security policies with controls to safeguard assets.

Oversee cyber security projects to improve the Group's cyber security stance.

Create and maintain cyber security dashboards for system and risk mitigation monitoring.

Perform risk assessments and impact analyses to guide strategic security decisions and investment prioritization.

Budget and Vendor Management:

Oversee cyber security vendor selection and management in line with Group strategy and track vendor performance against quality, time, and budget commitments.

Craft and negotiate contracts, SLAs, and deliverables with vendors, alongside the Group CISO and stakeholders.

Cultivate strategic partner relationships to enhance Group capabilities.

Develop and manage the cyber security budget, ensuring optimal allocation of resources in line with strategic priorities.

Monitor expenditure against the budget, identifying variances and implementing corrective actions as necessary.

Review and approve financial aspects of vendor contracts, ensuring alignment with the Group's financial policies and objectives

Digitization and Automation:

Lead and execute comprehensive digitization strategies to optimize operational efficiency.

Innovate and implement automation solutions to support overall organizational goals/strategy.

Review and implement process and system improvements, adopting newer technologies and innovative ideas.

People and Team Engagement:

Participate in the recruitment process to attract and retain skilled personnel for the cyber security team.

Drive and enhance employee engagement across the team to sustain a positive workplace culture.

Lead, inspire, and mentor the team to foster a high-performance culture and ensure cross-skilling through job rotation, technical, and behavioural training.

Ensure proper succession planning in the team.

Key Stakeholders - Internal:

CEO

Chief Information Officer

Head O&M

Chief Financial Officer

COO

IT Team

C&I Maintenance

Electrical Maintenance

Physical Security Team

Key Stakeholders - External:

Regulatory Agencies

NCIIPC (Ministry of Home affairs)

Ministry of Power

State Governments

Educational Qualification:

Engineering graduate with degree in Computer Science / Electronics or related discipline or a related field.

Work Experience (Range of years):

25+ years of experience in driving large, complex Cyber controls / Cyber regulatory compliance programs (e.g., SOX, IT general computer controls) in a large organizations / conglomerate across diverse lines of business

Preferred Industry:

Background in power and utilities preferred with a strong focus on technology and security governance.