Secure AI Architect

The Secure AI Architect will play a critical role in designing and implementing secure AI solutions within Microsoft ecosystems, including M365, Azure, and Copilot. This position requires deep technical expertise in cloud security, AI integration, and governance frameworks, ensuring enterprise-grade security for AI workloads and data protection across hybrid environments.

• Engage with Microsoft Customer Success clients to review and enhance their security posture for M365, Copilot, and Azure.
• Assess clients’ current security readiness initiatives for M365, Azure, and Copilot; identify gaps and recommend improvements.
• Evaluate M365 and Azure Secure Score and provide actionable insights to close security gaps.
• Provide consulting-level expertise on Microsoft Copilot, M365 Security, and Azure Security.
• Deliver technical assessments of current security readiness for M365, Azure, and Copilot environments.
• Implement advanced security principles such as Zero Trust, multi-factor authentication (MFA), and least privilege access.
• Integrate AI security capabilities into Microsoft Defender solutions for AI workloads, leveraging Defender for Cloud, Purview, Sentinel, and XDR within Azure Landing Zones.
• Establish data governance and compliance guardrails using Microsoft Purview for sensitive data classification and protection.
• Monitor AI environments for threats, assess incidents, and conduct proactive threat hunting using AI-powered tools like Microsoft Sentinel and Defender for Cloud.
• Manage security policies in Microsoft Entra ID and Microsoft 365; coordinate AI-related security incident response.
• Define data boundaries, classify sensitive data, and implement Data Loss Prevention (DLP) and insider risk management policies using Microsoft Purview.
• Oversee all aspects of Microsoft 365 Copilot and AI-related enterprise services, including agent approval, AI service configuration, and monitoring service health and analytics.

• 5–10 years of technology consulting experience with a strong track record in client-facing engagements and exceptional communication skills.
• 5+ years of experience in M365 Security and Azure with a focus on cloud transformation, governance, and FinOps.
• 2+ years of experience implementing security for Microsoft Copilot.
• 3+ years of experience delivering solutions for Microsoft M365 Security, Purview, and Defender Suite transformations/migrations.
• Deep knowledge of security frameworks: ISO 27001, NIST Cybersecurity Framework, and CIS Controls.
• Working knowledge of frameworks such as MCSB, PCI DSS, and Microsoft architectural frameworks (CAF, WAF).
• Proven ability to collaborate with business stakeholders, architects, identity administrators, and Azure administrators to secure enterprise IT systems.
• Expertise in Microsoft Entra Identity and Access Management, including AAD, B2B/B2C, Verified IDs, RBAC, PIM, Conditional Access, JIT, and Zero Trust principles.
• Strong understanding of Threat Protection technologies: Advanced Threat Analytics, Windows Defender ATP, Office 365 Threat Protection, and Defender Threat Intelligence.
• Proficiency in Microsoft Purview capabilities: Information Protection, DLP, eDiscovery, Records Management, Rights Management, Encryption, Legal Hold, Audit, and Customer Key.

• Microsoft Entra Identity Management
• Microsoft Defender Suite: Defender for Endpoint (EDR, AIR), Defender for Office 365 & Exchange Online Protection, Defender for Identity, Defender for Cloud, Defender Antivirus & Vulnerability Management, Defender Threat Intelligence
• Microsoft Purview & Microsoft Priva
• SOC, SIEM, and SOAR operations

• Microsoft Certified: Security Operations Analyst Associate
• Microsoft Certified: Identity and Access Administrator Associate
• Microsoft Certified: Azure Solutions Architect Expert
• Relevant certifications in ISO 27001, NIST, or CIS frameworks

At Cognizant, we strive to provide flexibility wherever possible, and we are here to support a healthy work-life balance through our various wellbeing programs. Based on this role’s business requirements, this is a remote position in Canada.

The working arrangements for this role are accurate as of the date of posting. This may change based on the project you’re engaged in, as well as business and client requirements. Rest assured; we will always be clear about role expectations.

We're excited to meet people who share our mission and can make an impact in a variety of ways. Don't hesitate to apply, even if you only meet the minimum requirements listed. Think about your transferable experiences and unique skills that make you stand out as someone who can bring new and exciting things to this role.

Cognizant will only consider applicants for this position who are legally authorized to work in Canada without requiring employer sponsorship, now or at any time in the future.

Disclaimer: The salary, other compensation, and benefits information is accurate as of the date of this posting. Cognizant reserves the right to modify this information at any time, subject to applicable law.

Cognizant is an equal opportunity employer. Your application and candidacy will not be considered based on race, color, sex, religion, creed, sexual orientation, gender identity, national origin, disability, genetic information, pregnancy, veteran status or any other characteristic protected by federal, state or local laws.