Lead Devops (London Area)

If you need support in completing the application or if you require a different format of this document, please get in touch with at UKI.recruitment@tcs.com or call TCS London Office number 02031552100 / +44 204 520 2575 with the subject line: “Application Support Request”.

Role: Lead DevOps

Job Type: Permanent

Location: London / Newcastle

Ready to utilize your skills in DevOps?

Make a meaningful impact as a Lead DevOps.

Careers at TCS: It means more

TCS is a purpose-led transformation company, built on belief. We do not just help businesses to transform through technology. We support them in making a meaningful difference to the people and communities they serve - our clients include some of the biggest brands in the UK and worldwide. For you, it means more to make an impact that matters, through challenging projects which demand ambitious innovation and thought leadership.

• Shape the future of TCS
• Be part of an exciting team who challenge themselves every day
• Grow your career, while being exposed to new technologies

The Role

As a Lead DevOps Engineer , you will be driving cloud transformation, leading multiple high-performance DevOps teams to build secure, scalable, and cost-efficient cloud solutions. You will be provided with access to cutting-edge cloud technologies, including AWS serverless computing, Kubernetes orchestration, AI-driven observability, and security automation, keeping you at the forefront of innovation.

Your responsibilities:

• Implement and manage highly available, scalable, and secure applications hosted on AWS Cloud, leveraging multi-region deployment strategies
• Enforce AWS security best practices to safeguard data, applications, and systems, including IAM policy design, access management, encryption standards, and compliance audits
• Design, implement, and manage various DevOps tools and technologies, including CI/CD platforms (Jenkins, GitLab CI), configuration management tools (Ansible, Puppet), and containerization technologies (Docker, ECS, Kubernetes)
• Monitor system performance, identify bottlenecks, and implement optimizations to improve reliability and efficiency
• Develop and maintain Infrastructure as Code (IaC) using Terraform, Ansible, AWS CloudFormation, ensuring consistency, repeatability, and compliance
• Identify and automate application deployment, scaling, and security processes, reducing manual effort and improving reliability
• Work with cross-functional teams, ensuring seamless collaboration between DevOps, development, security, and operations teams
• Troubleshoot complex system issues, analyze logs and performance metrics, and provide actionable recommendations
• Document and refine DevOps practices, maintaining version control, release management workflows, and configuration documentation

Your Profile

Essential skills/knowledge/experience:

• AWS Security & Compliance Expertise: Deep understanding of AWS Security, Identity, and Compliance services, including IAM, AWS Organizations, SCPs, Secrets Manager, AWS Config, GuardDuty, Security Hub, CloudTrail, and AWS KMS for encryption, ensuring robust cloud security
• Threat Detection & Compliance: Implementation of AWS security tools like Amazon Detective, AWS Shield, WAF, AWS Firewall Manager, enforcing security compliance standards such as ISO 27001, SOC2, GDPR, and NIST frameworks
• Collaborate with Solution Architects: Work closely with solution architects to design scalable, secure, and cost-efficient cloud systems/applications, ensuring DevOps methodologies align with business objectives
• Lead DevOps Team & Define Best Practices: Take ownership of designing and implementing DevOps frameworks, optimizing CI/CD pipelines, IaC standards, security policies, and guiding DevOps engineers in modern cloud strategies.
• Serverless Security & Architecture: Design and implement secure AWS Serverless solutions using ECS Fargate, Lambda, SNS, SQS, API Gateway, enforcing IAM execution roles, API authentication, encrypted messaging, and network isolation strategies
• Networking & Cloud Security: Deep expertise in TCP/IP, DNS, Load Balancers, network firewalls, SSL/TLS/mTLS, along with AWS Shield for DDoS protection, AWS WAF for web security, VPC segmentation, and automated vulnerability scanning
• Container Security & Orchestration: Expertise in Docker, ECS, EKS, Kubernetes, implementing security best practices like image vulnerability scanning, Kubernetes RBAC, IAM Roles for Service Accounts (IRSA), Pod Security Policies, and automated compliance enforcement
• Infrastructure Automation & Security: Strong experience in IaC tools (Terraform, CloudFormation, Ansible), applying least privilege IAM policies, role-based access controls (RBAC), automated compliance checks, and zero-trust security principles
• Monitoring, Logging & Alerting: Expertise in building centralized logging solutions, integrating ELK Stack, Prometheus, Grafana, Splunk, and AWS-native security monitoring tools such as CloudWatch, Security Hub, SIEM integrations
• CI/CD Security & Automation: Proficient in Jenkins, Git, GitHub Actions, ensuring secure CI/CD pipelines with artifact encryption, automated security scanning, and DevSecOps best practices
• Cloud-Based Database Security: Experience managing Amazon RDS, DynamoDB, ElastiCache, enforcing database encryption (KMS), automated backups, fine-grained access controls, and data integrity monitoring
• Cost Optimization & FinOps: Drive cloud cost optimization strategies using AWS Cost Explorer, Compute Savings Plans, Reserved Instances, AutoScaling efficiencies, and rightsizing workloads to maximize cost savings
• Problem-solving & Leadership: Strong ability to troubleshoot security vulnerabilities, enforce DevSecOps methodologies, and lead teams to adopt best practices in AWS cloud optimization and governance

Desirable skills/knowledge/experience:

• AWS Certifications (AWS Certified Security – Specialty, AWS Certified Solutions Architect, AWS DevOps Professional)
• Container orchestration and Security Knowledge
• IaC & Automation Tools (Terraform, Helm, Ansible, Kustomize etc.)
• CI/CD & Security Automation
• Cloud Cost Optimization & FinOps (AWS Trusted Advisor, Compute Savings Plans, cost forecasting strategies)
• Threat Intelligence & Compliance (ISO 27001, SOC2, GDPR, NIST frameworks)
• AWS-native Security Services (Macie for sensitive data discovery, Inspector for vulnerability scanning, GuardDuty for threat detection)
• Programming & Scripting (proficiency in Python and Shell Scripting for automation, cloud resource management, and infrastructure monitoring)
• AWS Database Expertise
• AWS Networking Expertise (strong knowledge of VPC design, Subnetting, Route Tables, NAT Gateways, Transit Gateway, VPC Peering, Direct Connect, PrivateLink, ALB/NLB/CLB Load Balancers, AWS WAF & Shield, VPN connectivity, and network security group management)

Rewards & Benefits

TCS is consistently voted a Top Employer in the UK and globally. Our competitive salary packages feature pension, health care, life assurance, laptop, phone, access to extensive training resources and discounts within the larger Tata network.

We offer health & wellness initiatives and sports events; we are the proud sponsor of the London Marathon.

Diversity, Inclusion and Wellbeing

Tata Consultancy Services UK&I is committed to meeting the accessibility needs of all individuals in accordance with the UK Equality Act 2010 and the UK Human Rights Act 1998.

We welcome and embrace diversity in race, nationality, ethnicity, disability, neurodiversity, gender identity, age, physical ability, gender reassignment, sexual orientation. We are a disability inclusive employer and encourage disabled people to apply for this role.

As a Disability Confident Employer, we offer an interview to applicants with disabilities or long-term conditions who meet the minimum criteria for the role. Please email us at UKI.recruitment@tcs.com if you would like to opt in.

If you are an applicant who needs any adjustments to the application process or interview, please contact us at UKI.recruitment@tcs.com with the subject line: “Adjustment Request” or call TCS London Office 02031552100 / +44 204 520 2575 to request an adjustment. We welcome requests prior to you completing the application and at any stage of the recruitment process.

Next Steps:

Application Process

1. Online application: You can apply directly through LinkedIn by uploading your CV. In case you wish to submit your application via another format like audio/video, please, contact - UKI.recruitment@tcs.com
2. Skill-Based discussion: This will be a level 1 interview with the project team, it can be via video or in-person. Details will be confirmed by your recruiter.
3. Managerial discussion: This discussion will focus on behavioral aspects and person-organization fit.
4. HR Discussion : This will be with one of the members of the HR team and will cover your career journey, aspirations for growth, compen]]>