Head of Cyber Security

With a strong commitment to research-based innovation, SKF India offers customized value-added solutions that integrate all its five technology platforms.\n\nTogether, we re‑imagine rotation for a better tomorrow.\n\nBy creating intelligent and clean solutions for people and the planet\n\nJob Description\n\nJob Title: Head of Cyber Security\n\nReports To: Head of Global IT & OT Infrastructure, SIAM and Securities\n\nLocation: Pune\n\nRole Purpose:\n\nThe Head of Cyber Security will provide vision and strategic direction to enterprise-wide initiatives that ensure the security, reliability, and cyber‑resiliency of IT Infrastructure, Platforms, Applications and Data. This role is critical in devising the cybersecurity strategy and roadmap in alignment with business requirements of all SKF Industrial Business Areas and Regions.\n\nWe are seeking an experienced Security Leader to strengthen our Governance, Risk & Compliance (GRC) posture across IT & OT Systems and conduct Risk Management for all Infra platforms, Applications, Data and devices. This role will be accountable for maintaining compliance documentation standards, supporting certification and audit readiness for the organization, leading security control assessments, and driving consistent governance practices across technology and business environments.\n\nKey Responsibilities:\n\n- Promote a strong cyber culture and promote Security and Compliance awareness across SKF Industrial organization.\n\n- Ensure that the company's IT systems hosting applications, data and Infrastructure Platforms are fully compliant with all applicable regulatory requirements and privacy laws.\n\n- Act as a key point of contact with Business and IT Leaders across the globe for cybersecurity-related communications and critical updates.\n\n- Coach and develop cybersecurity analysts, acting as a mentor to the SKF and partner Cyber-Security organizations.\n\n- Oversee the implementation and maintenance of cybersecurity policies, frameworks, and controls.\n\n- Collaborate with BCIOs and Regional Security Teams to sensitize critical initiatives that will control security incidents, monitor threats, reduce vulnerabilities, and improve security incident response.\n\n- Ensure compliance with regulatory and industry standards (e.g., NIST, NIS 2.0, ITAR, IEC 62443, ISO 27001, GDPR).\n\nStrategic Planning & Execution:\n\n- Partner with functional leads to develop and execute strategic roadmaps for cybersecurity and infrastructure aligned with enterprise transformation goals.\n\n- Help SKF improve Continuous Delivery practices aligned with Cyber‑Security roadmap.\n\n- Partner with architecture and procurement functions to ensure that Cyber Strategy and roadmap is in alignment with emerging Technology vision and roadmap.\n\n- Monitor KPIs and SLAs to ensure service excellence and continuous improvement.\n\n- Build and mentor a high‑performing team of Cyber professionals providing coverage across all IT functions.\n\n- Advocate the IT and Business functions within SKF to uplift Platform Engineering capabilities in alignment with Cyber Security standards.\n\n- Foster a culture of innovation, automation, accountability, and collaboration.\n\n- Craft the cyber‑vision in a manner that promotes AI‑related initiatives across business functions and regions boosting digital transformation efforts.\n\nThe Essentials:\n\n- Bachelor's degree in computer science, software engineering, management information systems, or related.\n\n- Experience supporting modern software architectures in both development and production environments.\n\n- Experience implementing cybersecurity capabilities including GRC, Network Security, EDR, WAF, SIEM/SOAR, TLS, PKI, BC/DR, and Risk Management.\n\n- Experience in Identity and Access Management systems including IGA, PAM, SSO, MFA, and AD with important standards (i.e.

OAuth, OpenIDC, SAML, SCIM, FIDO, etc.).\n\n- Experience or familiarity with key frameworks and certifications including NIST CSF, NIST SP 800-53, SOC2, ISO 27001, and IEC 62443.\n\n- Proven experience managing large-scale IT operations and security programs.\n\n- Strong knowledge of cloud platforms (Azure, AWS), enterprise networking, and security technologies.\n\n- Excellent soft skills, stakeholder management, and strategic acumen.\n\n- Thought leadership, development, and coaching experience and capabilities including functional and team goals & objectives, conflict resolution, and performance management.\n\n- Partner with multiple stakeholders and influence project decisions.\n\nIT Focused Qualifications:\n\n- European Union: Cyber Resilience Act (CRA), NIS2, EU Machinery Regulation (MR 2023/1230), RED Directive 2014/53/EU.\n\n- United States: CIRCIA (2022), NIST CSF 2.0, TSA Pipeline Security Directives.\n\n- China: Cybersecurity Law (2017), Data Security Law (2021), CII Regulations.\n\n- Australia: SOCI Act (2021 + 2023 Amendments).\n\n- APAC & Global: Malaysia CRA Bill, India Digital Security Bill DPDPA.\n\nOT Focus Qualifications:\n\n- EU: Connected products, machinery with embedded software, industrial networks.\n\n- US: Critical infrastructure resilience & incident reporting.\n\n- China: Data sovereignty & industrial control systems.\n\n- Australia: Critical Infrastructure and Incident Response Obligations.\n\n- APAC & Global: Localization of EU-style compliance requirements.\n\nPrimary Skills:\n\n- Deep expertise in cybersecurity strategy, risk management, and regulatory compliance.\n\n- Strong leadership and decision‑making abilities to align security initiatives with business goals.\n\n- Prepare Cyber Roadmap, Cyber Insure, Cyber Investment and ROI.\n\nSecondary Skills:\n\n- Excellent communication and stakeholder management skills.\n\n- Knowledge of emerging technologies, threat intelligence, and incident response best practices.\n\nCandidate Profile:\n\n- 18+ years of experience in IT Security, Cyber Risk, or GRC roles.\n\n- Hands‑on experience with IT and Cloud Risk Management programs.\n\n- Strong understanding of security controls, risk management principles, and cloud security (AWS, Azure).\n\n- Professional Certifications in CISSP, CISM, CRISC, PMP.\n\n- Experience building strategic technology plans and roadmaps.\n\n- Excellent understanding of business complexity and project interdependencies and the ability to question thought partners across functional areas.\n\n- Familiarity with ISO 27001, NIST CSF, NIS 2.0, ITAR and related security frameworks.\n\n- Excellent analytical, documentation, CxO Communication & presentation skills.\n\nAbout SKF\n\nSKF has been around for more than a century and today we are one of the world’s largest global suppliers of bearings and supporting solutions for rotating equipment. With more than 40,000 employees in around 130 countries, we are truly global. Our products are found everywhere in society.

In fact, wherever there is movement, SKF’s solutions might be at work. This means that we are an important part of the everyday lives of people and companies around the world. See more, at www.skf.com.\n\n#J-18808-Ljbffr