Job Specifications
If you need support in completing the application or if you require a different format of this document, please get in touch with at UKI.recruitment@tcs.com or call TCS London Office number 02031552100 / +44 204 520 2575 with the subject line: “Application Support Request”.
Role: Netskope Technical Architect
Job Type: Permanent
Location: Coventry, UK
Are you passionate about driving innovation and best practices in Networking and DLP?
We have an exciting role for you – Netskope Technical Architect!
Careers at TCS: It means more
TCS is a purpose-led transformation company, built on belief. We do not just help businesses to transform through technology. We support them in making a meaningful difference to the people and communities they serve - our clients include some of the biggest brands in the UK and worldwide. For you, it means more to make an impact that matters, through challenging projects which demand ambitious innovation and thought leadership.
Gain exposure to innovative technology.
Work with customers and identify opportunities to support their strategy and improve various processes across functions.
Gain access to endless learning opportunities.
The Role
As a Netskope Technical Architect you will serve as the subject matter expert for Secure Web Gateway (SWG), Cloud Access Security Broker (CASB), and Data Loss Prevention (DLP) technologies. You will work cross-functionally to architect scalable security solutions, lead incident response efforts, and drive continuous improvement in our cloud security posture.
Your responsibilities:
Work with teams to understand product requirements and build Internet Security policies to protect corporate endpoints.
Define, enable, and review Internet Security policies and traffic steering configurations using Secure Web Gateway (SWG) and Cloud Access Security Broker (CASB).
Analyse data exfiltration risks and design Data Loss Prevention (DLP) policies to mitigate threats.
Collaborate with Security Operations to enhance security requirements, apply ad-hoc site restrictions, and manage exception requests.
Apply advanced knowledge of SSL inspection to define secure decryption bypass policies without compromising protection.
Resolve DLP and SSL inspection issues by working closely with end users and SOC teams.
Administer and maintain the Netskope tenant, including upgrades and performance optimization.
Design and build a Quantum-ready Internal PKI, addressing gaps in existing infrastructure and integrating with Certificate Lifecycle Management solutions.
Define certificate templates and integrate cloud Hardware Security Modules (HSM) with Certificate Authorities for enhanced cryptographic security.
Establish infrastructure and rulesets for Zero Trust Network Access (ZTNA) and future VPN solutions.
Discover VPN-dependent applications and plan firewall changes to support ZTNA implementation.
Collaborate with stakeholders and application support teams to deliver ZTNA solutions.
Support network segmentation projects with kill-switch requirements for cyber resilience.
Manage proxy access control file changes and coordinate with network teams for implementation.
Partner with enterprise compute teams for deployment, upgrades, and maintenance of Internet Security tools on endpoints.
Manage EntraID enterprise apps required for Internet Security tools, ensuring SSO, SCIM, and IDP functionality.
Mentor L1/L2 engineers and contribute to security automation initiatives.
Your Profile
Essential skills/knowledge/experience:
Strong expertise in Internet Security architecture, including policy design, SSL inspection, and Data Loss Prevention strategies.
Proven ability to implement advanced security solutions, such as Secure Web Gateway, CASB, Netskope administration, and EntraID integration.
Skilled in PKI design and lifecycle management, with knowledge of quantum-resistant cryptography and cloud HSM integration.
Experience in Zero Trust Network Access (ZTNA) implementation, network segmentation, and VPN migration planning.
Collaborative and detail-oriented, with a track record of working across security operations, networks, and enterprise compute teams to deliver robust, future-ready security frameworks.
Rewards & Benefits
TCS is consistently voted a Top Employer in the UK and globally. Our competitive salary packages feature pension, health care, life assurance, laptop, phone, access to extensive training resources and discounts within the larger Tata network.
We offer health & wellness initiatives and sports events; we are the proud sponsor of the London Marathon.
Diversity, Inclusion and Wellbeing
Tata Consultancy Services UK&I is committed to meeting the accessibility needs of all individuals in accordance with the UK Equality Act 2010 and the UK Human Rights Act 1998.
We welcome and embrace diversity in race, nationality, ethnicity, disability, neurodiversity, gender identity, age, physical ability, gender reassignment, sexual orientation. We are a disabili
About the Company
Tata Consultancy Services is an IT services, consulting and business solutions organization that has been partnering with many of the world's largest businesses in their transformation journeys for over 56 years. Our consulting-led, cognitive powered, portfolio of business, technology and engineering services and solutions is delivered through our unique Location Independent Agile(tm) delivery model, recognized as a benchmark of excellence in software development.
A part of the Tata group, India's largest multinational busi...
Know more