About the role As a Security Architect, you will make an impact by designing, securing, and evolving enterprise‑grade network and cloud security platforms that enable secure access, regulatory compliance, and scalable governance across the organization. You will be a valued member of the Cybersecurity Architecture & Engineering team and work closely with security operations, cloud, network, and application stakeholders to modernize security capabilities while maintaining strong operational resilience. This role blends hands‑on engineering, architectural design, and technical leadership, with a focus on firewall platforms, identity, cloud security, SIEM, endpoint protection, and vulnerability management. In this role, you will: Architect, implement, and operate network and cloud security controls, including next‑generation firewalls, VPN, WAF, IDS/IPS, segmentation, and Zero Trust access. Lead Palo Alto firewall environments across on‑prem and Azure, including policy design, lifecycle management, optimization, and threat prevention capabilities. Design and manage secure remote access solutions (GlobalProtect / Prisma Access), enforcing Zero Trust and strong authentication controls. Oversee Cisco ISE services for identity, AAA, RBAC, and directory/SSO integrations, ensuring strong access governance and auditability. Direct the administration and tuning of Web Application Firewalls (WAF) to protect applications from Layer‑7 threats, bots, and abuse. Implement and manage Microsoft Entra ID, including SSO onboarding, MFA, risk‑based authentication, and federation protocols (SAML, OAuth2, OIDC). Lead a centralized vulnerability management program using CrowdStrike, prioritizing remediation based on risk, exploitability, and business impact. Oversee SIEM and endpoint security operations using CrowdStrike NGSIEM and Falcon, ensuring effective detection, response, and SOAR execution. Own major incident response for network and cloud security services, including escalation, stakeholder communication, RCA, and corrective actions. Ensure security change governance, compliance readiness, and audit support through evidence collection, recertification, and control attestations. Drive continuous improvement and automation, including policy optimization, observability, runbooks, and infrastructure‑as‑code practices. What you need to have to be considered Extensive experience in network and cloud security architecture and operations, including firewalls, VPN, WAF, IDS/IPS, proxy, and segmentation. Hands‑on expertise with Palo Alto Networks platforms (NGFW, Panorama/Strata Cloud Manager, WildFire, Threat Prevention, URL Filtering, GlobalProtect). Strong experience with identity and access management, including Microsoft Entra ID, MFA, SSO, RBAC, and federation protocols. Proven capability in security incident and vulnerability management, including triage, remediation tracking, and root cause analysis. Solid understanding of security frameworks and standards, such as ISO 27001/27002, NIST CSF / 800‑53, and CIS Controls. Experience working within security governance, risk, and compliance programs, including audits and policy enforcement. Ability to lead complex technical initiatives while communicating effectively with technical teams and executive stakeholders. Strong operational mindset with experience aligning security services to ITSM, change management, and SLA/SLO commitments. These will help you stand out Experience with CrowdStrike Falcon and NGSIEM, including SOAR integrations and SIEM health management. Exposure to Zero Trust, ZTNA, and SASE architectures. Hands‑on experience driving automation and security modernization using IaC, CI/CD, or policy‑as‑code. Relevant security certifications such as PCNSE, CCNP/CCIE Security, CISSP, or CISM. Background leading or mentoring teams through security transformation or large‑scale platform upgrades. The Cognizant community: We are a high caliber team who appreciate and support one another. Our people uphold an energetic, collaborative and inclusive workplace where everyone can thrive. Cognizant is a global community with more than 300,000 associates around the world. We don’t just dream of a better way – we make it happen. We take care of our people, clients, company, communities and climate by doing what’s right. We foster an innovative environment where you can build the career path that’s right for you. About us: Cognizant (Nasdaq: CTSH) is an AI Builder and technology services provider, building the bridge between AI investment and enterprise value by building full-stack AI solutions for our clients. Our deep industry, process and engineering expertise enables us to build an organization’s unique context into technology systems that amplify human potential, realize tangible returns and keep global enterprises ahead in a fast-changing world. See how at www.cognizant.com or @cognizant. Cognizant is an equal opportunity employer. Your application and candidacy will not be considered based on race, color, sex, religion, creed, sexual orientation, gender identity, national origin, disability, genetic information, pregnancy, veteran status or any other characteristic protected by federal, state or local laws. If you have a disability that requires reasonable accommodation to search for a job opening or submit an application, please email CareersNA2@cognizant.com for roles based in the Americas or CareersIndia2@cognizant.com for roles based in India. Disclaimer: Compensation information is accurate as of the date of this posting. Cognizant reserves the right to modify this information at any time, subject to applicable law. Applicants may be required to attend interviews in person or by video conference. In addition, candidates may be required to present their current state or government issued ID during each interview.
