Login Sign Up
🔔 FCM Loaded

Cloud Security Engineer

Tata Consultancy Services

2 - 5 years

Chennai

Posted: 08/01/2026

Getting a referral is 5x more effective than applying directly

Job Description

Role: Cloud Security Engineer

Location: Bengaluru/Chennai/Pune/Hyderabad

Type: Fulltime

Experience range: 4+ Years


Walk-in Interview on 10th Jan 2026 (Saturday)

Chennai: TCS Sholinganallur Kumaran Nagar, 415/21-24, TNHB Main Rd, Chennai, Tamil Nadu

Bangalore: TCS PSN Office, PRESTIGE SHANTINIKETAN, Crescent-3,Sadaramanagala Village & Sy.No.129/2 & 130,Krishnarajapuram Hobli, Bangalore East Taluk, Bangalore - ,Karnataka,

Hyderabad: TCS Deccan Park, Madhapur, Hyderabad, Telangana

Pune: Tata Consultancy Services, Sahyadri Park 1, Rajiv Gandhi Infotech Park, Hinjewadi Phase 3, Pune -

Roles and responsibilities:

  • Senior Azure Cloud Security Engineer to architect, implement, and operate security controls across Microsoft Azure and Microsoft 365 ecosystems.
  • Microsoft Defender XDR
  • Microsoft Cloud security stack
  • Microsoft Defender for Cloud Apps (MDCA/CASB)
  • Cloud Workload Protection (CWPP)
  • Cloud Security Posture Management (CSPM)
  • Microsoft Defender XDR
  • Microsoft Defender for Cloud Apps (MDCA/CASB)
  • Defender for Cloud (CSPM & CWPP)
  • Prisma SASE, Cisco ISE
  • multi-cloud security
  • Design Azure landing zones and security reference architectures aligned to Zero Trust.
  • Establish enterprise guardrails using Azure Policy, Management Groups, and RBAC with Privileged Identity Management (PIM).
  • Own CSPM posture via Microsoft Defender for Cloud
  • Operate and optimize Microsoft Defender XDR for end-to-end detection and response.
  • Manage Microsoft Sentinel (SIEM/SOAR): KQL analytics, hunting, UEBA, playbooks (Logic Apps), and incident workflows.
  • Lead incident response: triage, containment, forensics (Log Analytics, snapshots), root cause analysis, stakeholder communication.
  • Administer Microsoft Defender for Cloud Apps (MDCA) for app discovery, OAuth app governance, session controls, DLP, and data protection.
  • Implement Conditional Access + MDCA session policies for inline control across key SaaS applications.
  • Secure workloads using Defender for Cloud plans (VMs, Storage, SQL, AKS, App Services): hardening, vulnerability management, agent coverage.
  • Drive AKS security: network policies, identity, secrets, image scanning, admission controls; secure ACR and supply chain flows.
  • Implement controls: Azure Firewall, NSGs, DDoS Protection, Bastion, JIT VM access.
  • Protect applications via Azure WAF (App Gateway/Front Door), TLS cert lifecycle, and bot management.

Services you might be interested in

Improve Your Resume Today

Boost your chances with professional resume services!

Get expert-reviewed, ATS-optimized resumes tailored for your experience level. Start your journey now.

getmereferred logo Know more