Overview

Make a meaningful impact as an MS Purview + Entra ID SME. Location: London. Employment type: Permanent.

Role summary: As an MS Purview + Entra ID SME, you will be tasked with safeguarding digital assets by leveraging a comprehensive suite of Microsoft security technologies. The ideal candidate will use Microsoft Defender XDR for managing and responding to threats, implement Microsoft Purview to ensure data compliance, and secure identities and access through Microsoft Entra ID. Core responsibilities include threat management, proactive hunting for vulnerabilities, data protection, security posture management, and incident response, all while collaborating with other teams to maintain and improve the organization\'s overall security posture.

Support information: For application support or alternate document formats, contact UKI.recruitment@tcs.com or call TCS London Office at 02031552100 with the subject line “Application Support Request”.

Key responsibilities

• Design, implement, and manage Data Loss Prevention (DLP) policies to prevent unauthorized data sharing.
• Configure and monitor policies to detect, investigate, and act on malicious or unintentional activities that could lead to data leakage or security incidents.
• Monitor and investigate communications within the organization to detect and address potential violations of corporate policy or regulatory standards.
• Manage and secure user, group, and workload identities including administering App and Enterprise App registrations and managing guest access for B2B and B2C scenarios.
• Develop and manage Conditional Access (CA) policies to enforce granular access controls, including MFA, based on user, device, and location.
• Implement and manage Self-Service Password Reset (SSPR) and Password Writeback to ensure seamless and secure user experience.
• Work with internal IT and other security teams to ensure the effectiveness of the platform.
• Serve as a point of contact for external services like Microsoft Defender Experts for proactive hunting and expert guidance.
• Document incident response procedures, create reports on security posture, and provide regular briefings to leadership.
• Implement policies for records management and retention to ensure data is retained according to legal and business requirements and securely disposed of when no longer needed.
• Utilize DSPM capabilities to understand data risk, identify sensitive data, and implement controls to mitigate risk including data security posture related to AI applications and models.
• Support legal and compliance teams by utilizing Purview eDiscovery and audit capabilities for investigations.
• Act as a subject matter expert for the core components of the Defender XDR suite.
• Manage endpoint protection, detection, and response across the device fleet.
• Protect against email-based threats, including phishing, malicious attachments, and compromised links.
• Monitor on-premises Active Directory signals to identify and investigate threats related to compromised identities.
• Enforce security policies and provide threat protection across cloud applications.
• Prioritize and address critical vulnerabilities and misconfigurations based on a risk-based assessment.
• Utilize Microsoft Entra ID Protection to identify and respond to compromised credentials and other identity-based risks.
• Work closely with the Defender for Identity team to monitor on-premises Active Directory signals for threats.
• Implement and maintain Privileged Identity Management (PIM) and Privileged Access Management (PAM) to provide just-in-time access and enforce least privilege.
• Secure Bring Your Own Device (BYOD) and other device access by implementing device-based access policies and configurations.
• Ensure proper configuration and integration of authentication protocols including SAML, OAuth, OIDC, and SCIM for application and service provisioning.

Your profile

Essential skills/knowledge/experience:

• Previous experience in a cybersecurity role with a strong focus on Microsoft security solutions.
• In-depth practical knowledge of the Microsoft security stack, including Defender XDR, Purview, and Entra ID.
• Experience with scripting languages, particularly PowerShell, for automation and management.
• Familiarity with cybersecurity frameworks and attack methodologies (e.g., MITRE ATT&CK).
• Microsoft Certified: Security Operations Analyst Associate (SC-200; SC-300; SC-400).
• Certified Information Systems Security Professional (CISSP).
• Analytical and problem-solving abilities; strong communication and collaboration skills.
• Proactive mindset and ability to adapt to a fast-paced, evolving threat landscape.

TCS is consistently voted as a Top Employer in the UK and globally. Our salary packages include pension, health care, life assurance, laptop, phone, access to extensive training resources and discounts within the Tata network.

We offer health & wellness initiatives and sponsor events such as the London Marathon.

Diversity, Inclusion and Wellbeing

Tata Consultancy Services UK&I is committed to meeting accessibility needs in accordance with the UK Equality Act 2010 and the UK Human Rights Act 1998. We welcome diversity and strive to be a disability-inclusive employer. If you require adjustments to the application process or interview, contact UKI.recruitment@tcs.com with the subject line: Adjustment Request or call TCS London Office at 02031552100 / +44 204 520 2575.

As a Disability Confident Employer, we offer an interview to applicants with disabilities or long-term conditions who meet the minimum criteria for the role. Please email us at UKI.recruitment@tcs.com if you would like to opt in.

Beware of Fraudulent offers

This is to notify you that TCS does not ask for any payment or security deposit from candidates at any stage of the recruitment process. TCS has not authorised any third-party to collect money on their behalf. If you encounter fraud, email UKI.recruitment@tcs.com to report it.

Join us and do more of what matters. Apply online now.