Accenture
IT/OT SOC Manager
- Permanent
- Dubai, United Arab Emirates
- Experience 10 - 15 yrs
- Urgent
Job overview
Date posted
14/10/2025
Location
Dubai, United Arab Emirates
Salary
AED 30,000 - 40,000 per month
Compensation
Comprehensive package + relocation
Experience
10 - 15 yrs
Seniority
Manager
Qualification
Bachelors degree
Expiration date
28/11/2025
Job description
The IT/OT SOC Manager (Cybersecurity and Incident Response Manager) leads end-to-end delivery of security operations across both IT and OT environments for Accentureās clients, ensuring comprehensive threat detection, monitoring, and response for corporate systems and industrial control systems (ICS/SCADA). The role manages SOC analysts, threat hunters, and incident responders; oversees operational processes including alert triage, escalation, incident handling, post-incident reviews, and continuous improvement against SLAs and KPIs; drives IT/OT cybersecurity integration by aligning with IT, OT, engineering, and plant operations; integrates data sources from ICS, SCADA, DCS, PLCs, HMIs, and enterprise IT into SIEM/SOAR platforms; and develops OT-specific detection use cases and response playbooks. The manager monitors evolving threats and vulnerabilities across IT/OT, leads proactive threat hunting and coordinated incident response (containment, investigation, recovery, and RCA), and ensures adherence to frameworks and regulations such as NIST CSF, IEC 62443, ISO/IEC 27001, and NERC CIP. Responsibilities include supporting audits, risk assessments, and cyber resilience exercises, and leveraging tools such as Splunk, QRadar, Microsoft Sentinel, Nozomi, Dragos, EDR, IDS/IPS, and network security controls while addressing OT protocols (Modbus, DNP3, OPC) and industrial vendor ecosystems (e.g., Siemens, Rockwell).
Required skills
Key responsibilities
- Lead end-to-end delivery of SOC services for IT and OT, including 24/7 monitoring, detection, and incident response
- Manage SOC analysts, threat hunters, and incident responders across IT/OT domains and oversee alert triage, escalation, incident handling, and post-incident reviews
- Own SOC service performance by managing SLAs, KPIs, and continuous improvement metrics
- Align IT and OT security operations to support a converged cyber defense strategy with IT, OT, engineering, and plant operations stakeholders
- Integrate data sources from ICS/SCADA/DCS/PLC/HMI and enterprise IT into SIEM/SOAR platforms and maintain log/telemetry coverage
- Develop and refine OT-specific detection use cases and incident response playbooks tailored to industrial threats
- Monitor evolving threats and vulnerabilities across IT/OT; lead proactive threat hunting and analysis
- Coordinate incident response activities (containment, investigation, recovery, and root cause analysis) across IT/OT landscapes
- Ensure compliance with NIST CSF, IEC 62443, ISO/IEC 27001, and NERC CIP; support audits, risk assessments, and cyber resilience exercises
- Establish and maintain stakeholder and vendor relationships to ensure effective service delivery and technology integration
Experience & skills
- Bachelorās degree in Cybersecurity, Engineering, Computer Science, or a related field
- 14+ years of cybersecurity operations experience, including 10+ years in leadership roles covering both IT and OT
- Strong knowledge of IT security practices, SOC operations, and ICS/SCADA/OT systems
- Hands-on experience with SIEM, SOAR, EDR, IDS/IPS, and network security tools (e.g., Splunk, QRadar, Microsoft Sentinel, Nozomi, Dragos)
- Familiarity with OT protocols and systems (e.g., Modbus, DNP3, OPC, Siemens, Rockwell)
- Knowledge of and adherence to security frameworks and standards (NIST CSF, IEC 62443, ISO/IEC 27001, NERC CIP)
- Preferred certifications: CISSP, GICSP, GCIA, SANS ICS410/515, CISM or equivalent
- Experience in critical infrastructure sectors such as oil & gas, utilities, or energy
- Proven leadership, communication, and stakeholder management skills; focus on incident response, OT risk awareness, governance, and continuous improvement
