TCS is Hiring!!Role : Application Security ArchitectDesired Experience Range : 10+ yearsLocation of Requirement : Bengaluru/Indore/Pune/Mumbai/Chennai/NoidaResponsibilities:Expertise in Java EE architecture Expertise in cloud-native architecture Experience in Java Application Design and architecture along with modern technologies like Apache Kafka, Container orchestration and microservices architecture.Strong knowledge of common application security vulnerabilities (OWASP Top 10, CWE/SANS, API Security Top 10). Expertise in secure coding practices for Java, Spring, REST APIs, microservices. Deep knowledge of cryptography principles, digital certificates, TLS, HSM/KMS.Hands‑on experience with SAST, DAST, SCA, IAST, container scanning tools (e.g., Fortify, SonarQube —) AWS/Azure security controls, IAM, VPC architecture, zero‑trust principles. Must-HaveRole descriptions / Expectations from the RoleApplication Security Architect to be responsible for defining, driving, and governing application and data security architecture across Core Banking and Digital Banking platforms. The role ensures that applications—especially mission-critical banking systems—are designed, built, and deployed with security by design, meeting regulatory, compliance, and enterprise standards.Working closely with product owners, engineering teams, enterprise security groups, customers, and technology partners to embed industry‑leading security controls into banking products.Lead the design and review of Application Security Mechanisms & Standards including external APIs, internal interfaces, token & certificate-based authentication, secrets management, SSO, OAuth2, OpenID Connect.Define Data Security Mechanisms—encryption at rest/in motion, key management, database security hardening. Collaborate with stakeholders to gather requirements and translate them into technical solutionsLead / Participate in discussions with Prospects , Customers ( CISO) and partners to present / defend the application security for TCS BaNCS solutionsReview the VAPT frameworks , policies and help the VAPT team ( internal or external) to finalize the policies deployed for the VAPT.Monitor and Analyze the observations from VAPT and provide the directions / solutions for the observations Define the Application Security Roadmap for the TCS BaNCS Product set considering the current upcoming global banking security standards (ISO 27001, NIST CSF, PCI DSS, OWASP ASVS).Architect and validate secure deployment topologies for on‑prem, cloud, and hybrid banking workloads (AWS/Azure/GCP).Implement & review cloud security controls (IAM, KMS, WAF, network segmentation, container security).
Job Title
Security Architect