Solution Architect - Application Security - Tata Consultancy Services (TCS)

Key Responsibilities

• Design end‑to‑end application security architectures aligned with business goals and compliance requirements.
• Lead threat modeling and risk assessment workshops to identify and mitigate vulnerabilities early in the development lifecycle.
• Define and enforce Secure SDLC processes, integrating security controls into CI/CD pipelines and DevSecOps practices.
• Collaborate with development, infrastructure, and operations teams to embed security best practices across cloud platforms such as AWS and Azure.
• Provide technical guidance, mentorship, and code reviews to ensure secure coding standards are consistently applied.

Requirements

• 5+ years of experience in application security architecture and engineering.
• Deep knowledge of Secure SDLC, threat modeling methodologies (e.g., STRIDE, PASTA), and common security frameworks (e.g., OWASP, NIST).
• Hands‑on experience securing cloud‑native applications on AWS or Azure, including IAM, network security, and container security.
• Proficiency with DevSecOps tools such as SAST, DAST, SCA, and CI/CD platforms (Jenkins, GitLab, Azure DevOps).
• Strong communication skills to translate complex security concepts into actionable guidance for cross‑functional teams.