TCS is Hiring!!Role :Application Security Architect Desired Experience Range: 10+ years Location of Requirement: Bengaluru/Indore/Pune/Mumbai/Chennai/NoidaResponsibilities: Expertise in Java EE architecture Expertise in cloud-nativearchitecture Experience inJava Application Designand architecture along with modern technologies like Apache Kafka, Container orchestration andmicroservices architecture. Strong knowledge of common application security vulnerabilities (OWASP Top 10, CWE/SANS, API Security Top 10). Expertise in secure coding practices for Java, Spring, REST APIs, microservices. Deep knowledge of cryptography principles, digital certificates, TLS, HSM/KMS. Hands‑on experience with SAST, DAST, SCA, IAST, container scanning tools (e.g., Fortify, SonarQube —) AWS/Azure security controls, IAM, VPC architecture, zero‑trust principles.Must-HaveRole descriptions / Expectations from the Role Application Security Architect to be responsible for defining, driving, and governing application and data security architecture across Core Banking and Digital Banking platforms. The role ensures that applications—especially mission-critical banking systems—are designed, built, and deployed withsecurity by design , meeting regulatory, compliance, and enterprise standards. Working closely with product owners, engineering teams, enterprise security groups, customers, and technology partners to embed industry‑leading security controls into banking products. Lead the design and review ofApplication Security Mechanisms & Standardsincluding external APIs, internal interfaces, token & certificate-based authentication, secrets management, SSO, OAuth2, OpenID Connect. Define Data Security Mechanisms—encryption at rest/in motion, key management, database security hardening. Collaborate with stakeholders to gather requirements and translate them into technical solutions Lead / Participate in discussions with Prospects , Customers ( CISO) and partners to present / defend the application security for TCS BaNCS solutions Review the VAPT frameworks , policies and help the VAPT team ( internal or external) to finalize the policies deployed for the VAPT. Monitor and Analyze the observations from VAPT and provide the directions / solutions for the observations Define the Application Security Roadmap for the TCS BaNCS Product set considering the current upcoming global banking security standards (ISO 27001, NIST CSF, PCI DSS, OWASP ASVS). Architect and validate secure deployment topologies foron‑prem, cloud, and hybridbanking workloads (AWS/Azure/GCP). Implement & review cloud security controls (IAM, KMS, WAF, network segmentation, container security).
Job Title
Security Architect