**This position is on-site/hybrid in Riverwoods, Illinois or open to remote in the United States. A qualified applicant must be local to this area or be open to relocation.** ***Please note, this role is not able to offer visa transfer or sponsorship now or in the future*** **Practice - CIS - Cloud, Infrastructure, and Security Services** **About Cloud Infrastructure & Security Services:** Cognizant's Cloud, Infrastructure, and Security Services Practice (CIS), is all about embracing digital transformation by driving core modernization holistically across layers. We help customers transform infrastructure and workplace to meet the rapidly evolving needs of the digital era. Our holistic approach delivers key results for our customers by achieving cloud driven modernization and workplace and operational transformation to run the business in a secure environment. **Job Summary** We are seeking an experienced Cyber Security Architect with 10 to 12 years of experience to join our team. The ideal candidate will have expertise in Secure Architecture and Threat Modeling particularly with the Microsoft Threat Modeling Tool. This role involves working in a hybrid model with day shifts and no travel requirements. The candidate will play a crucial role in enhancing our security posture and ensuring the safety of our applications. **Job Duties** + Threat Model applications, systems, and platforms with a focus on security based practices and data protection requirements + Manages and executes Cybersecurity risk assessment using qualitative and quantitate methodologies to support the organization's overall security posture + Partner with product owners, development teams, and architects to evaluate current security posture and drive future security control implementations based on gaps found during the cybersecurity assessment + Identify threats for potential attacks and systemic security issues as they relate to threats and vulnerabilities, including recommendations for enhancements or remediation + Participate in design session for proposed system solutions + Engage application teams through an intake process to identify purpose of their system, components that comprise the system, identify threats and recommended security requirement + Prepare and deliver written and verbal briefings to message threat modeling findings across all levels of the enterprise + Works independently to scope vulnerable bodies of technologies, identify weakness, severity and impact and recommend paths to remediate + Leans advanced cybersecurity concepts including new and modern threat exploitation techniques of internal and external bad actors + Perform due diligence and validation on identified risk findings **Responsibilities** + Develop and implement secure application architectures that align with organizational goals and security standards. + Conduct comprehensive threat modeling exercises to identify potential security vulnerabilities and propose mitigation strategies. + Utilize the Microsoft Threat Modeling Tool to assess and improve the security of application designs. + Collaborate with cross-functional teams to integrate security practices into the software development lifecycle. + Provide expert guidance on secure coding practices to development teams to prevent security breaches. + Oversee security assessments and penetration testing to evaluate the effectiveness of security measures. + Ensure compliance with industry standards and regulations related to application security. + Lead incident response efforts to quickly address and resolve security incidents. + Develop and deliver security training and awareness programs for technical and non-technical staff. + Monitor emerging security threats and trends to proactively address potential risks. + Create detailed security documentation and reports for stakeholders and management. + Foster a culture of security awareness and continuous improvement within the organization. + Contribute to the development of security policies and procedures to enhance the overall security framework. **Qualifications** + Possess a strong background in Secure Architecture and Threat Modeling with at least 10 years of experience. + Demonstrate proficiency in using the Microsoft Threat Modeling Tool for security assessments. + Exhibit excellent problem-solving skills and the ability to work collaboratively in a hybrid work environment. + Have a deep understanding of security standards and best practices in application development. + Show a commitment to staying updated with the latest security technologies and methodologies. **Salary and Other Compensation:** Applications will be accepted until 06/16/2025 The annual salary for this position is between $84,600- $134,000 depending on experience and other qualifications of the successful candidate. This position is also eligible for Cognizant's discretionary annual incentive program, based on performance and subject to the terms of Cognizant's applicable plans. **Benefits:** Cognizant offers the following benefits for this position, subject to applicable eligibility requirements: + Medical/Dental/Vision/Life Insurance + Paid holidays plus Paid Time Off + 401(k) plan and contributions + Long-term/Short-term Disability + Paid Parental Leave + Employee Stock Purchase Plan Disclaimer: The salary, other compensation, and benefits information is accurate as of the date of this posting. Cognizant reserves the right to modify this information at any time, subject to applicable law. **\#LI-IR1 #CB #Ind123** Cognizant is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected Veteran status, age, or any other characteristic protected by law.