Tata Consultancy Services (TCS) is an equal opportunity employer, and embraces diversity in race, nationality, ethnicity, gender, age, physical ability, neurodiversity, and sexual orientation, to create a workforce that reflects the societies we operate in. Our continued commitment to Culture and Diversity is reflected in our people’s stories across our workforce and implemented through equitable workplace policies and processes. About TCS TCS is an IT services, consulting, and business solutions organization that has been partnering with many of the world’s largest businesses in their transformation journeys for over 55 years. Its consulting‑led, cognitive‑powered portfolio of business, technology, and engineering services and solutions is delivered through its unique Location Independent Agile delivery model, recognized as a benchmark of excellence in software development. A part of the Tata group, India's largest multinational business group, TCS operates in 55 countries and employs over 607,000 highly skilled individuals, including more than 10,000 in Canada. The company generated consolidated revenues of US $ 30 billion in the fiscal year ended March 31, 2025, and is listed on the BSE and the NSE in India. TCS' proactive stance on climate change and award‑winning work with communities across the world have earned a place in leading sustainability indices such as the MSCI Global Sustainability Index and the FTSE4Good Emerging Index. Role Overview The SecDesign Security Architect plays a critical role in assessing and strengthening the security posture of the firm’s technology ecosystem. The mission of the SecDesign team is to conduct deep security architecture assessments across systems, applications, and business processes—identifying risks, evaluating controls, and recommending remediation aligned with established security standards and industry best practices. This role functions as an internal consultant, partnering with multiple business units and technology teams to evaluate a wide range of technology stacks. The Architect also acts as an Integrator, collaborating globally with Technology, Business, Suppliers, Stakeholders, and Partners to perform SecDesign assessments and guide secure architecture decisions. Additionally, the Architect will work with a global team of subject matter experts to modernize the firm’s SDLC platform, supporting deployment automation into private/public cloud endpoints and SaaS tooling. This position offers the opportunity to help design and influence next‑generation development and deployment practices across the firm. Key Responsibilities Lead SecDesign deep‑dive sessions with assessment requestors and project stakeholders. Identify, assess, and prioritize security risks in alignment with business impact. Deliver clear, actionable security requirements and recommendations across areas including: Authentication, authorization, and auditing Application security (session controls, penetration testing findings, input validation) Secure data storage and transmission Network security architecture and best practices Cloud security principles, patterns, and controls Periodically review and update security reference architectures and blueprints. Participate in Operational Risk and Technology Risk governance forums. Contribute to the definition of modern architecture patterns across cloud, application, and platform domains. Collaborate with global SMEs to evolve the firm’s SDLC tooling and deployment automation strategy. Influence next‑generation development and deployment platforms across diverse technology stacks. Identify areas of strategic technology investment that enhance the firm’s security posture. Required Skills & Experience Soft Skills Exceptional communication skills—written, verbal, presentation, and listening. Ability to influence technical and business stakeholders through clear, fact‑based reasoning. Strong time‑management skills with the ability to handle multiple assessments simultaneously. Proven ability to execute and deliver under short timelines, including engagements with senior management. Skill in tailoring communication of technical risks vs. business risks based on the audience. Security Architecture Expertise Deep knowledge of application, network, platform, and cloud security vulnerabilities—with the ability to translate complex risks into developer‑friendly guidance. Extensive experience conducting Information Security, IT Security, or Audit assessments, including delivering findings and securing stakeholder buy‑in. Strong capability to analyze and review technical designs, architecture diagrams, and functional requirements for security implications. Thank you for your interest in TCS. Candidates that meet the qualifications for this position will be contacted within a 2‑week period. We invite you to continue to apply for other opportunities that match your profile. #J-18808-Ljbffr