Job Title

Job Details Role / Job Title: Cloud Security Engineer Work Location: TCS London Mode of Working: Hybrid Hybrid Requirement: 4 days The Role As a key member of the Global Security Architecture & Engineering team, the Cloud Security Engineer will play a vital role in securing the company's cloud environments. This position involves performing multi-cloud security reviews, risk assessments, guardrail development, policy codification, and design reviews. The ideal candidate will ensure that all cloud implementations align with the company's security, compliance, and regulatory requirements. You will drive the development and maintenance of robust, end-to-end cloud security strategies while collaborating with in-house and external teams. Key Responsibilities Conduct and ensure comprehensive security implementation for global cloud projects across various technology areas Develop, codify, and engineer cloud security policies encompassing preventive, detective, reactive, and forensic controls; perform thorough testing of these policies Engineer cloud security solutions for containerized environments and microservices (e.g., Kubernetes, Docker) Build and integrate security solutions for DevSecOps pipelines and collaborate with cross-functional teams to deploy them globally Perform threat modeling for cloud-based workloads and develop corresponding countermeasures Review and assess new third-party cloud and on-premises solutions to identify potential security risks and recommend mitigations Design and implement security overlays across multi-cloud environments Partner with stakeholders to develop and enforce cloud security policies, standards, and best practices Monitor cloud security compliance throughout project lifecycles and ensure adherence to company standards Guide the development of secure architecture requirements and ensure they are met through project planning and design phases Maintain accurate reporting of security progress and communicate effectively with relevant stakeholders Preferred Education / Qualifications Bachelor's degree in computer science, Cybersecurity, or a related field. Master's degree preferred 8+ years of experience in information security, with a focus on Technical Cyber Security domain Minimum of 5 years' experience in a cloud security environment CISSP, CCSP, OSCP, SANS or equivalent desirable Certification in one or more cloud vendor offerings such as AWS, GCP, Azure, OCI Specific Knowledge & Experience 3+ years of hands-on cloud security experience, ideally in roles such as cloud security engineer or solutions architect with expertise in secure cloud implementations Proficiency in core cloud security areas: governance, identity and access management, network and compute infrastructure security, data protection, workload security, and monitoring Knowledge of cloud security frameworks (e.g., AWS Well-Architected, Google Cloud Security Foundations) and architectural standards (e.g., TOGAF) Familiarity with AI security assurance frameworks and implementing security measures for cloud-based AI services Experience with security tools for container technology (e.g., Kubernetes, ECS, Docker) and cloud posture management (e.g., Prisma Cloud, Rapid7) Expertise in integrating security into CI/CD processes and proficiency with tools such as Git and GitHub Hands-on experience with Infrastructure as Code (IaC) and Policy as Code (PaC) technologies, including Terraform and CloudFormation Demonstrated skills in cloud threat modeling and architectural assessment using tools like IriusRisk Strong knowledge of compliance benchmarks (e.g., CIS, GDPR, PCI-DSS, ISO standards) and industry cloud security standards (e.g., NIST, CSA) Proficiency in coding and workload languages (e.g., Python, Java, .NET) and practical understanding of various cloud models (IaaS, PaaS, SaaS) Excellent documentation, presentation, and analytical skills with the ability to convey technical concepts to stakeholders TPBN1_UKTJ