Login Sign Up
🔔 FCM Loaded

Cloud Engineer

Tata Consultancy Services

2 - 5 years

Chennai

Posted: 23/12/2025

Getting a referral is 5x more effective than applying directly

Job Description

ROLES AND RESPONSIBILITIES


Location : Chennai


  1. Design Azure landing zones and security reference architectures aligned to Zero Trust.
  2. Establish enterprise guardrails using Azure Policy, Management Groups, and RBAC with Privileged Identity Management (PIM).
  3. Own CSPM posture via Microsoft Defender for Cloud
  4. Operate and optimize Microsoft Defender XDR for end-to-end detection and response.
  5. Manage Microsoft Sentinel (SIEM/SOAR): KQL analytics, hunting, UEBA, playbooks (Logic Apps), and incident workflows.
  6. Lead incident response: triage, containment, forensics (Log Analytics, snapshots), root cause analysis, stakeholder communication.
  7. Administer Microsoft Defender for Cloud Apps (MDCA) for app discovery, OAuth app governance, session controls, DLP, and data protection.
  8. Implement Conditional Access + MDCA session policies for inline control across key SaaS applications.
  9. Secure workloads using Defender for Cloud plans (VMs, Storage, SQL, AKS, App Services): hardening, vulnerability management, agent coverage.
  10. Drive AKS security: network policies, identity, secrets, image scanning, admission controls; secure ACR and supply chain flows.
  11. Implement controls: Azure Firewall, NSGs, DDoS Protection, Bastion, JIT VM access.
  12. Protect applications via Azure WAF (App Gateway/Front Door), TLS cert lifecycle, and bot management.
  13. Administer Entra ID (Azure AD): Conditional Access, MFA, CAE, Identity Protection, PIM, workload identities/managed identities.
  14. Enforce encryption and secrets management via Azure Key Vault (HSM-backed keys, CMK, rotation).
  15. Implement DLP across M365/MDCA; label/classify sensitive data and enforce policies.
  16. Build policy-as-code and IaC guardrails: Bicep/ARM, Terraform modules, drift detection.
  17. Automate operations using PowerShell, Azure CLI, and Python; integrate security telemetry and auto-remediation via Logic Apps/Functions.
  18. Map controls to CIS/NIST/ISO/PCI; maintain audit evidence and control attestation.
  19. Provide posture dashboards, metrics (Secure Score, incident MTTR), and executive reporting.

Author standards, playbooks, and decision records; mentor teams and lead design reviews.

Services you might be interested in

Improve Your Resume Today

Boost your chances with professional resume services!

Get expert-reviewed, ATS-optimized resumes tailored for your experience level. Start your journey now.

getmereferred logo Know more