Assistant Manager Cyber Security

Location:

Gurugram, India.

About Us

Zelestra (formerly Solarpack) is a multinational platform fully focused on multi-technology renewables with a vertically integrated business model focused large-scale renewable projects in rapidly growing markets across Europe, North America, Latin America, Asia, and Africa. Headquartered in Spain, Zelestra has more than 1000 employees worldwide and is backed by EQT, one of three largest funds in the world with $200B in assets.

One solution doesn't fit all, especially in energy. We're on a journey alongside our clients, assisting them in achieving their decarbonization goals. We are committed to developing tailored-made solutions by analyzing power market challenges and co-creating structured products based on customer insights.

One of the top 10 sellers of clean energy to corporates in the world, according to Bloomberg NEF, we are committed to tailored solutions to meet customer needs.

At Zelestra we aim to be a solid and solvent company, capable of executing quality and valuable projects for the society and the environment. Therefore, we maintain a firm commitment to contribute directly to the social development of the communities and markets in which we operate, not only through the creation of economic value, but also through the generation of quality employment and through the social projects we promote.

MAKING DECARBONIZATION A REALITY

Mission

Lead and govern our cloud, data center, and distributed sites infrastructure alongside the endtoend cybersecurity posture. Ensure compliance with CEA (Cyber Security in Power Sector) Regulations, ISO 27001:2022 ISMS, and NIST CSF. Own secure cloud architecture, network security, IT/OT security controls, endpoint governance, SOC operations, and application security for a modern renewable enterprise.

Responsibilities

• Infrastructure Management (Cloud, Data Center & Sites)
• Lead cloud strategy and secure deployments across Azure/AWS/GCP; manage Entra ID/Azure AD, subscriptions, landing zones, policies, and Zero Trust (Identity Protection, Conditional Access).
• Oversee compute, storage, backup/replication, networking and VPN.
• Govern distributed sites (plants/ROC/offices): WiFi, routers, switches, SDWAN; secure plant ROC Cloud Corporate connectivity; internet redundancy, MPLS, 4G/5G failover.
• Maintain server/VM standards, patching, backup and DR across sites with defined RTO/RPO and annual DR tests.
• Cybersecurity Governance
• Implement and maintain ISO 27001:2022 ISMSrisk assessments, SoA, internal audits, external audit readiness, policy/procedure/playbook upkeep.
• Lead cyber awareness and rolebased trainings (plants, ROC, offices).
• Ensure CEA compliance for renewable sites and digital assets: secure perimeter, identity governance, secure remote access, log management, dataflow diagrams and threat modelling; coordinate with SLDC/CEA auditors.
• Apply NIST CSF (Identify/Protect/Detect/Respond/Recover); maintain asset inventory, risk register, baselines, backup/recovery plans.
• Network, Security & Access Controls
• Lead firewall architecture/administration (Fortinet/Cisco); implement IT/OT segmentation, VLANs, microsegmentation.
• Oversee IDS/IPS, secure remote access, VPN, proxy, DNS security.
• Manage NAC (ISE/ClearPass/FortiNAC) for device control and posture.
• Ensure strong endpoint/server security (EDR/XDR, hardening, CIS baselines).
• Security Operations (SOC, SIEM, Detection & Response)
• Lead SOC (Tier1/2) to achieve target MTTA/MTTR; maintain IR plan and run cyber drills.
• Manage SIEM: log onboarding/retention, correlation rule tuning, usecase development, threat models.
• Drive threatintel monitoring, periodic threathunting, RCA and corrective action tracking.
• Application Security (AppSec)
• Enforce AppSec policies for internal/vendor apps; integrate DevSecOps (SAST, DAST, SCA) and secure SDLC controls.
• Conduct architecture and code reviews; validate thirdparty apps prior to onboarding; govern API/microservice security and secrets management.
• Vulnerability, Patch & ThirdParty Risk Management
• Own monthly patch compliance baselines and critical vulnerability remediation SLAs
• Schedule quarterly vuln scans and annual penetration tests; track closure to SLA.
• Conduct vendor risk assessments, contract security clauses, and periodic reassessments.
• Operations & Governance
• Maintain CMDB accuracy and configuration standards; drive change management (CAB) and evidence trails for audits.
• Track operational KPIs: backup success rate, DR test outcomes, SIEM log coverage %, EDR/XDR coverage %, patch/vuln SLAs, SOC MTTA/MTTR.
  
  

Job Requirements

Required Skills & Experience

• 810 years of experience in Infrastructure, Cloud, Cybersecurity, or related domains.
• Strong knowledge of Azure/AWS cloud fundamentals, landing zones, IAM/Entra ID, and Zero Trust architecture.
• Handson experience with firewalls (Fortinet/Cisco), NAC solutions, SDWAN, routing/switching, DNS/DHCP, VPN.
• Deep understanding of ISO 27001, NIST CSF, and CEA cybersecurity guidelines.
• Experience with SIEM (Sentinel/QRadar/Splunk), SOC operations, EDR/XDR tools (Defender/CrowdStrike/SentinelOne).
• Strong grasp of AppSec, OWASP Top 10, DevSecOps, and secure coding guidelines.
• Experience managing multilocation infrastructure across industrial/plant environments (preferred).
• Strong governance, documentation, and crossfunctional collaboration skills.
• Exposure to OT protocols & security tools IEC 104, Modbus, OPC-UA, along with familiarity with OT/ICS security platforms (e.g. Claroty)
  
  

Educational Qualification

• Bachelor's degree in Computer Science, Information Technology, Electronics Engineering, or related field.
  
  

What We Offer

Join a fast-growing multinational leader in the renewable energy sector, where innovation, expertise, and sustainability drive our success. Work alongside industry pioneers and be part of India's clean energy transformation.

Unparalleled Professional Growth

• World-class training programs to sharpen your skills and leadership potential.
• Opportunities to work on high-impact projects that shape the future of renewable energy.
• A dynamic, growth-oriented culture that rewards innovation and performance.
  
  

Comprehensive Benefits For Your Well-Being

We invest in our people with a competitive benefits package designed to support your personal and professional needs:

• Health Insurance with parental coverage
• Cab Facility for a stress-free commute.
• Meal Facility to keep you energized throughout the day.
• Creche Facility to support working parents.
• Relocation Benefits to ensure a seamless transition
  
  

Team gatherings, festive celebrations, and offsites to foster collaboration and camaraderie. A vibrant, people-first culture that values innovation and teamwork.

Let's co-build a carbon-free tomorrow!