At ABB, we help industries run leaner and cleaner—and every person here makes that happen. You’ll be empowered to lead, supported to grow, and proud of the impact we create together. Join us and help run what runs the world.
This Position reports to:
Digital Platform Operations Specialist
ABB’s Process Automation business area enables customers to operate some of the world’s largest and most complex industrial infrastructures, helping them outrun – leaner and cleaner. We offer a broad range of automation, electrification and digital solutions for process, hybrid and maritime industries, including industry-specific integrated control and software as well as measurement and analytics solutions and services.
In this role, we are looking for a Security Operations Lead – Governance & Risk Management to join our Industrial Automation Digital Organization. The role requires an experienced security professional with strong expertise in Security Operations (SecOps) governance, risk management, vulnerability management, incident response oversight, and security posture management across hybrid environments. The candidate will be responsible for establishing and governing the Security Operations framework for Azure-primary SaaS environments spanning cloud, on-premises, edge infrastructure, Kubernetes platforms, databases, and customer deployments.
The work model for the role is: Hybrid
You will be mainly accountable for:
- Own and govern the overall Security Operations (SecOps) operating model, including roles, responsibilities, RACI definitions, escalation paths, and backup ownership structures.
- Establish and drive weekly, monthly, and quarterly security governance forums to review vulnerabilities, incidents, exceptions, security drift, access risks, and remediation progress.
- Ensure Security Operations processes are repeatable, auditable, and aligned with organizational priorities, compliance requirements, and business objectives.
- Collaborate with Cloud Operations, Platform Engineering, Database, Network, Identity and Access Management (IAM), Incident Response, Compliance, and Application teams to drive effective security governance and remediation activities.
- Own and maintain the enterprise security risk register, ensuring risks are categorized based on severity, business impact, customer exposure, data sensitivity, and criticality.
- Drive risk-based prioritization and governance of security risks across Azure environments, Kubernetes platforms, on-premises systems, databases, and customer deployments.
- Govern risk acceptance processes by validating business justifications, compensating controls, expiry timelines, and escalating critical or overdue risks to leadership.
- Define and maintain security posture reporting frameworks using Green/Amber/Red models to provide visibility into security health across environments.
- Establish and govern security control baselines across cloud platforms, Kubernetes environments, databases, networks, IAM, certificate management, secrets management, and edge infrastructures.
- Oversee the end-to-end vulnerability management lifecycle, ensuring findings from Qualys, Wiz, Microsoft Defender, container security tools, and other platforms are appropriately prioritized, assigned, remediated, and validated.
- Monitor remediation service level agreements (SLAs) for critical, high, medium, and low vulnerabilities while ensuring overdue findings are escalated and closure evidence is reviewed.
- Lead governance activities related to security incident management, ensuring incidents are classified, investigated, documented, resolved, and supported by appropriate Root Cause Analysis (RCA) and corrective actions.
- Coordinate with CSIRT, Incident Response teams, Cloud Operations, Platform Engineering, Network, Database, and IAM teams to ensure effective incident handling and continuous improvement.
- Act as the business owner for Security Operations and Documentation Portals by defining requirements, prioritizing enhancements, and ensuring capabilities support risk management, posture visibility, vulnerability tracking, remediation workflows, evidence management, and audit readiness.
- Ensure security documentation, runbooks, mitigation procedures, incident records, evidence repositories, exception registers, and audit artifacts remain current, accessible, and audit-ready.
- Support internal and external audits by coordinating evidence collection, validating security controls, and ensuring audit findings are tracked through closure.
- Prepare and present regular leadership reports highlighting security posture, vulnerabilities, incidents, remediation performance, exception status, compliance metrics, and emerging security risks.
- Translate complex technical security risks into clear business impact statements and management-level summaries to support informed decision-making.
- 10–15 years of experience in Security Operations, Information Security Governance, Security Risk Management, or related cybersecurity leadership roles.
- Strong experience establishing and managing Security Operations governance frameworks, operating models, and cross-functional security review processes.
- Proven expertise in security risk management, including risk identification, prioritization, exception management, remediation governance, and leadership escalation.
- Hands-on knowledge of Microsoft Azure security services, including Defender for Cloud, Azure Policy, Azure Resource Graph, and Microsoft Sentinel.
- Strong understanding of Identity and Access Management concepts, including Microsoft Entra ID, Azure RBAC, Privileged Identity Management (PIM), Access Reviews, Managed Identities, and Service Principals.
- Experience with Cloud Security Posture Management (CSPM) and vulnerability management tools such as Wiz, Qualys, Microsoft Defender for Endpoint, Trivy, or equivalent technologies.
- Solid understanding of Kubernetes security principles across AKS, OpenShift, K3s, and MicroK8s environments.
- Good knowledge of network security concepts including Azure Firewall, Network Security Groups (NSGs), VPN connectivity, Private Endpoints, DNS, and customer connectivity architectures.
- Understanding of database security practices related to Azure SQL, Cosmos DB, MongoDB, Azure Data Explorer (ADX), Databricks, and associated data protection controls.
- Experience with certificate lifecycle management, Key Vault, secrets management, TLS certificates, MQTT, and OPC UA security implementations.
- Strong expertise in security incident governance, root cause analysis, evidence management, and audit readiness processes.
- Proven ability to define and manage service level agreements (SLAs), key performance indicators (KPIs), dashboards, governance reports, and executive communications.
- Demonstrated ability to coordinate remediation activities across multiple teams without direct ownership of engineering functions.
- Strong documentation discipline with experience maintaining policies, standards, runbooks, evidence repositories, and governance records.
- Excellent stakeholder management, communication, and leadership skills with the ability to translate technical risks into business context.
- Bachelor's or Master's degree in Cybersecurity, Information Security, Computer Science, Information Technology, Engineering, or related disciplines.
- Professional certifications such as CISSP, CISM, CRISC, CCSP, Microsoft Security certifications, Azure Security Engineer Associate, or equivalent cybersecurity credentials.
- Experience supporting security operations within industrial environments, including manufacturing, energy, utilities, marine, or process industries.
- Familiarity with compliance frameworks and audit standards such as ISO 27001, SOC 2, NIST, IEC 62443, or similar regulatory requirements.
- Experience working within hybrid cloud environments spanning Azure, on-premises infrastructure, and edge computing platforms.
- Exposure to automation and scripting technologies such as Azure CLI, PowerShell, or security orchestration concepts.
ABB is a leading global technology company that energizes the transformation of society and industry to achieve a more productive, sustainable future. The Process Automation (PA) business area automates, electrifies, and digitalizes some of the most complex industrial infrastructures globally. Through its divisions, it serves customers across energy, process and hybrid industries, including oil and gas, chemicals, water, mining, marine and ports, pulp and paper, and many more. Process Automation stands at the center of critical industrial transformations, helping industries operate more safely, efficiently, and sustainably. By combining deep domain expertise with innovative digital technologies, ABB enables customers to improve reliability, strengthen cybersecurity resilience, and accelerate their journey toward smarter and more secure operations.
Building a cleaner, smarter future takes all kinds of minds: the curious, the courageous, and the creative. We welcome people from all backgrounds and experiences.
Ready to make an impact? Apply today or visit www.abb.com to learn more about the impact of our solutions across the globe.
Recruitment Fraud Warning
ABB never asks for payment from job applicants. All genuine job offers follow a formal application and interview process.
View current job openings and apply at: https://careers.abb/global/en/home
For more information, read our full fraud warning notice at: https://global.abb/group/en/careers/how-to-apply/fraud-warning
