Job description

The IT/OT SOC Manager (Cybersecurity and Incident Response Manager) leads end-to-end delivery of security operations across both IT and OT environments for Accenture’s clients, ensuring comprehensive threat detection, monitoring, and response for corporate systems and industrial control systems (ICS/SCADA). The role manages SOC analysts, threat hunters, and incident responders; oversees operational processes including alert triage, escalation, incident handling, post-incident reviews, and continuous improvement against SLAs and KPIs; drives IT/OT cybersecurity integration by aligning with IT, OT, engineering, and plant operations; integrates data sources from ICS, SCADA, DCS, PLCs, HMIs, and enterprise IT into SIEM/SOAR platforms; and develops OT-specific detection use cases and response playbooks. The manager monitors evolving threats and vulnerabilities across IT/OT, leads proactive threat hunting and coordinated incident response (containment, investigation, recovery, and RCA), and ensures adherence to frameworks and regulations such as NIST CSF, IEC 62443, ISO/IEC 27001, and NERC CIP. Responsibilities include supporting audits, risk assessments, and cyber resilience exercises, and leveraging tools such as Splunk, QRadar, Microsoft Sentinel, Nozomi, Dragos, EDR, IDS/IPS, and network security controls while addressing OT protocols (Modbus, DNP3, OPC) and industrial vendor ecosystems (e.g., Siemens, Rockwell).