OT Cyber Security Architect

This is an excellent opportunity for OT Cyber Security professionals to be part of leading-edge technology projects. Cognizant’s Cloud, Infrastructure & Security Services Practice provides end-to-end solutions covering architecture, design, implementation, management, and on-going support across the entire enterprise technology infrastructure. Our services include a spectrum of management, consulting, and systems integration services to help our clients maximize value in their infrastructure resources, while optimizing infrastructure performance and cost.

Responsibilities:

• Develop and implement micro-segmentation policies based on Zero Trust principles, with a focus on limiting access to only what is required for specific applications and devices.
• Configure and manage Palo Alto Networks Next-Generation Firewalls (NGFW) to enforce micro-segmentation policies.
• Leverage Palo Alto Networks’ capabilities to identify OT (Operational Technology) protocols and communications, establish device inventories, and prioritize assets for security measures.
• Apply security principles specifically to OT environments, understanding the unique challenges of industrial control systems.
• Continuously assess OT devices and applications for security posture, identifying vulnerabilities and potential threats.
• Collaborate with OT stakeholders to identify needs and implement suitable security measures.
• Configure, manage, and monitor security policies within Strata Cloud Manager.
• Utilize Strata’s IoT Security features for device segmentation, policy enforcement, and threat detection.
• Employ AI-powered capabilities in Strata for automated policy analysis and remediation.
• Secure industrial networks and devices effectively.
• Understand OT/IoT protocols and apply security best practices such as Zero Trust and least privilege.
• Recognize vulnerabilities in plant automation systems.
• Design and implement IDMZ architectures to isolate and secure IoT/OT devices.
• Use firewalls and other security appliances for effective network segmentation and threat containment.
• Understand segmentation in OT/plant environments.
• Be knowledgeable about industrial automation, SCADA/HMI systems, and their security implications.
• Develop incident response procedures specific to OT environments.
• Respond to security incidents, isolate compromised systems, and coordinate mitigation with cross-functional teams.
• Design and manage security policies for Palo Alto Networks firewalls.
• Ensure policies align with Zero Trust principles and are effective, efficient, and compliant.
• Conduct regular policy audits and improvements.
• Work with various teams to ensure security policies are communicated, implemented, and managed effectively.
• Lead initiatives to enhance the organization’s security posture.

Required Skills:

• Proven experience in designing and implementing micro-segmentation and security policies across IT and OT environments.
• Expertise with Palo Alto Networks products including NGFW, PAN-OS, and Panorama.
• Understanding of Zero Trust principles as applied to OT environments.
• In-depth OT security knowledge including industrial protocols, identity management, and standards (ISA/IEC 62443).
• Familiarity with automation and orchestration tools.
• Experience with cloud-based security solutions, including integration of Strata services with OT systems.

At Cognizant you will experience an exciting mix of innovation by design, creativity, collaboration, and efficiency within a framework of stimulating objectives and a passion for delivering the best to our customers. You will be joining a network of some of the most creative, innovative, and dedicated people in the industry with ample opportunities to learn and develop your career. Our Associates are chosen for their attitude, skills, knowledge, and enthusiasm but above all, their belief that anything is possible. Cognizant is an equal opportunities employer, and we welcome all applications regardless of race, colour, gender, ethnic origin, nationality, religion or beliefs, disability, age, sexual orientation, political opinions, or trade union membership.