Cloud Engineer

Tata Consultancy Services

0 years

0 Lacs

chennai tamil nadu india

Posted:16 hours ago| Platform:

Apply

Skills Required

design azure zones security management sentinel siem analytics logic triage analysis discovery oauth governance controls data saas storage sql drive network scanning firewall mfa encryption vault code terraform drift automate powershell python auto remediation nist audit evidence metrics score

Work Mode

On-site

Job Type

Full Time

Job Description

ROLES AND RESPONSIBILITIES

Location : Chennai

Design Azure landing zones and security reference architectures aligned to Zero Trust.
Establish enterprise guardrails using Azure Policy, Management Groups, and RBAC with Privileged Identity Management (PIM).
Own CSPM posture via Microsoft Defender for Cloud
Operate and optimize Microsoft Defender XDR for end-to-end detection and response.
Manage Microsoft Sentinel (SIEM/SOAR): KQL analytics, hunting, UEBA, playbooks (Logic Apps), and incident workflows.
Lead incident response: triage, containment, forensics (Log Analytics, snapshots), root cause analysis, stakeholder communication.
Administer Microsoft Defender for Cloud Apps (MDCA) for app discovery, OAuth app governance, session controls, DLP, and data protection.
Implement Conditional Access + MDCA session policies for inline control across key SaaS applications.
Secure workloads using Defender for Cloud plans (VMs, Storage, SQL, AKS, App Services): hardening, vulnerability management, agent coverage.
Drive AKS security: network policies, identity, secrets, image scanning, admission controls; secure ACR and supply chain flows.
Implement controls: Azure Firewall, NSGs, DDoS Protection, Bastion, JIT VM access.
Protect applications via Azure WAF (App Gateway/Front Door), TLS cert lifecycle, and bot management.
Administer Entra ID (Azure AD): Conditional Access, MFA, CAE, Identity Protection, PIM, workload identities/managed identities.
Enforce encryption and secrets management via Azure Key Vault (HSM-backed keys, CMK, rotation).
Implement DLP across M365/MDCA; label/classify sensitive data and enforce policies.
Build policy-as-code and IaC guardrails: Bicep/ARM, Terraform modules, drift detection.
Automate operations using PowerShell, Azure CLI, and Python; integrate security telemetry and auto-remediation via Logic Apps/Functions.
Map controls to CIS/NIST/ISO/PCI; maintain audit evidence and control attestation.
Provide posture dashboards, metrics (Secure Score, incident MTTR), and executive reporting.

Author standards, playbooks, and decision records; mentor teams and lead design reviews.

More Jobs at Tata Consultancy Services

Tcs Hiring For GRC , Pan India

Pune, Bengaluru, Mumbai (All Areas)

7 - 12 yrs

INR 9 - 19 Lacs

Java / Spring boot with API Developer

Pune

5 - 10 yrs

INR 9 - 19 Lacs

SAP PP and QM Consultant

Pune

4 - 9 yrs

INR 8 - 18 Lacs

SAP BTP Consultant

Pune

4 - 9 yrs

INR 9 - 19 Lacs

Customer Service Associate

Pune

1 - 6 yrs

INR 1 - 5 Lacs

Mock Interview

Practice Video Interview with JobPe AI

Start Python Interview

Start Your Job Search Today

Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.