T

Head of Information Security

Tata Consultancy Services · Mumbai, Maharashtra, India

~₹1Cr (est.)15–25 yrs experiencefull_timePosted 2w ago
Apply now →

Job description

**Role : Head Information & Security Office** **Experience : 18 - 26 Years** **Location –Mumbai, Hyderabad** **Mode of Interview: Virtual** **Job Description** The Head of Information & Security will be responsible for establishing and securing the complete digital and information backbone of the AI Data Centre business. This includes: - Setting up the enterprise-wide ERP and business systems. - Designing the technology architecture for corporate, project, and operational systems. - Establishing cybersecurity governance and compliance across IT, OT, and cloud environments. - Ensuring that the digital infrastructure supports project execution, operations, finance, and customer engagement at hyperscaler-grade reliability and security. This is a foundational role in creating a digitally integrated, secure, and scalable organization for India’s largest AI-ready data centre platform. **2. Key Responsibilities** A. Enterprise IT Architecture & ERP Implementation - Define and implement the Enterprise Architecture Roadmap covering corporate, project, and operations functions. - Lead the end-to-end implementation of a fit-for-purpose ERP system — covering Finance, Supply Chain, HR, Projects, and Asset Management. - Select and oversee the ERP platform (SAP S/4HANA, Oracle Fusion, or TCS proprietary ERP) based on scalability and cost optimization. - Ensure ERP integration with other business systems — PMO dashboards, DCIM, SCADA, finance models, and procurement portals. - Establish data governance frameworks for master data, access control, and reporting consistency. - Develop a Management Information System (MIS) with real-time visibility into KPIs (cost, schedule, uptime, safety, financial performance). - Build enterprise-grade collaboration and workflow systems (email, document management, project collaboration, internal communication tools). B. IT Infrastructure, Networks & Cloud Systems - Design and deploy robust IT infrastructure across headquarters, regional offices, and data centre sites. - Implement secure and redundant network connectivity, integrating on-premise and cloud-based systems. - Establish IT operations centres for network, server, and end-user support. - Implement hybrid cloud architecture for enterprise workloads, with data residency compliance. - Develop and enforce data backup, archival, and recovery policies. - Manage relationships with OEMs, service providers, and IT partners (TCS Digital, Tata Communications, etc.). C. Cybersecurity Governance & CISO Functions - Build a comprehensive cybersecurity framework that aligns with ISO 27001, SOC 2, NIST, and India’s CERT-In regulations. - Set up a Security Operations Centre (SOC) for 24×7 monitoring of IT, OT, and cloud assets. - Implement Zero-Trust Architecture across all digital assets and networks. - Oversee identity and access management (IAM), endpoint protection, and data encryption standards. - Conduct vulnerability assessment and penetration testing (VAPT) on all critical systems. - Coordinate cybersecurity readiness with hyperscaler clients (Google, AWS, OpenAI, Microsoft). - Maintain incident response playbooks and conduct simulated cyberattack drills. - Prepare and submit periodic Cybersecurity Posture Reports to the CEO, Board, and Tata Group CISO. D. Digital Integration Across Project Lifecycle - Integrate digital systems across design, construction, and operations workflows — connecting the ERP with the DCIM and PMO systems. - Collaborate with the CTO and COO to ensure seamless data flows between engineering design (BIM), construction progress, cost tracking, and asset management. - Implement field mobility solutions for project teams — including digital inspection tools, photo logs, and asset tagging. - Develop AI- and ML-driven analytics for predictive maintenance and energy optimization. - Enable real-time dashboards for leadership and investor reporting through unified data pipelines. E. Data Governance, Compliance & Risk Management - Develop data classification and retention policies. - Ensure compliance with India’s Digital Personal Data Protection Act (DPDPA 2023) and global privacy norms (GDPR, CCPA). - Implement data-loss prevention (DLP), encryption, and secure transmission protocols. - Maintain comprehensive audit trails for all business systems. - Manage digital risk through continuous monitoring, risk assessments, and internal audits. F. Business Continuity & Disaster Recovery - Develop Business Continuity Plans (BCP) and Disaster Recovery (DR) systems for corporate IT and operational technology (OT). - Ensure multi-site redundancy for ERP, network, and security systems. - Define and test Recovery Time Objective (RTO) and Recovery Point Objective (RPO) metrics across systems. - Conduct semi-annual BCP/DR simulation drills. G. Leadership & Governance - Build and lead an integrated Digital & Information Technology Organization, including IT Operations, Cybersecurity, and Data Governance teams. - Define key performance metrics for system uptime, data quality, and incident response. - Drive cultural adoption of digital-first and security-by-design principles across the organization. - Serve as secretary to the Digital Governance & Security Council, co-chaired by the CEO. - Represent the company in Tata Group digital councils and external cybersecurity forums.